Examples/Vulnerable_NoSqlInjection_1.ps1
|
function Find-UserUnsafe { param($login, $password) $filter = '{"$where":"function(){return this.login==''' + $login + ''' && this.password==''' + $password + ''';}"}' $collection = New-Object psobject $collection.Find($filter) } |