PortSwigger Web Academy: Exploiting NoSQL Injection to Extract Data

Hello, World! This blog post will serve as a walkthrough of PortSwigger’s Web Academy new NoSQL Injections lab #3, “Exploiting NoSQL injection to extract data.” Let’s go for it!

Glossary

NoSQL Database — refers to a database that does not implement table-based storage mechanisms but instead leverages an alternative…