Tag
mongodb
Safeguard articles tagged "mongodb" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Application Security
NoSQL injection prevention in MongoDB and Mongoose
A single unsanitized query key like $ne can bypass authentication in MongoDB apps — two 2024-2025 Mongoose CVEs show the fix is harder than one middleware package.
Jul 16, 20267 min read
Incident Response
MongoDB Atlas Breach: Customer Metadata Exposed in Corporate Systems Attack
MongoDB disclosed unauthorized access to its corporate systems in December 2023, exposing customer metadata and contact information while Atlas cluster data remained secure.
Nov 15, 20235 min read
Application Security
NoSQL Injection and MongoDB: Prevention Guide
NoSQL injection attacks exploit the query languages of non-relational databases to bypass authentication, extract data, and modify records. This guide focuses on MongoDB injection with defenses applicable to all NoSQL databases.
Aug 5, 20226 min read