Too fast, too insecure: Securing Mongo Express web administrative interfaces

From helpnetsecurity.com

securing Mongo Express

Mongo Express is a lightweight web-based administrative interface deployed to manage MongoDB databases interactively. It is authored using Node.js, Express and Bootstrap packages. This case study highlights the deployment of Mongo Express admin panels without authentication on the Internet and the various measures to prevent the exposure.

Read more…