Mongoose and Query Injection when using Javascript?
Question
How does MongoDB address SQL or Query injection? explains how to handle query injection with BSON when using javascript on the server. I haven't been able to track down how/whether Mongoose handles query injection though.
At this point I have two questions:
- Does Mongoose protect against query injection (using BSON or some other method)
- If it does, are there any quirks with it's implementation that a developer need to be aware of?
1 answers
solution1
3 2013-08-26 08:35:19
猫鼬不能防止查询注入,因此不幸的是,您需要按照上面链接中的指南执行自己的注入检测。
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Javascript variable scope when mongoose query
Preventing SQL Injection in Rails while using Javascript Query Builder
using max query with mongoose
mongoose query returns plain javascript
how to catch an error when using mongoose to query something
What does the context:'query' option do when using mongoose?
JavaScript Injection using Firefox Mobile
HTML code injection using Javascript
UIWebView CSS injection using JavaScript
When to use query population in mongoose?
Related Tags