Skip to content

Latest commit

 

History

History
26 lines (18 loc) · 1.02 KB

README.md

File metadata and controls

26 lines (18 loc) · 1.02 KB

Insecure-Firebase-Exploit

A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.

Blog:

https://blog.securitybreached.org/2020/02/04/exploiting-insecure-firebase-database-bugbounty/

Usage:

Firebase-Write-Permission-Exploit.py This is the Updated Version of Exploit i made. Now simply give the Database Name, File Name You wish to create, Your Information. And Write it to the Insecure/vulnerable firebase databases.

Usage POC Image

python Firebase-Write-Permission-Exploit.py

Enter Firebase Databse Name: <Database Name Here>
Enter Your Filename: <File Name Here>
Enter your name: <Your Name Here>
Enter your email: <Your Email Here>
Enter your Blog: <Your Contact link Here>
Enter A Message: <A Message you want to display alongside the basic Exploit info>