How to protect myself against "Mongoinjection"

Asked

Viewed 70 times

3

Use Mongodb in a front-end application that runs on Node.JS through the Express framework.

I would like to know how to create protections against Mongodb "Injection" (similar to sql Injection).

  • The correct term would be Nosql Injection

1 answer

2


I found the following descriptive in the Soen thread and found it interesting to share in this your question:

The point is convert and interpret input data

Mongodb avoids potential problems of this kind by not performing data conversions. It does not perform conversions into text structures to find out what to do, so there is no possibility of misinterpretation of the data...

In this reference there is an indicative link on complementary reading to help in points when writing secure code (if it is a concern).

Source: How does Mongodb avoid the SQL Injection mess?

Browser other questions tagged

You are not signed in. Login or sign up in order to post.