Newly Added Security Tests, February 15, 2017: MongoDB

DetectifyFeb 15, 2017

Security never stands still, which is why we update our service on a regular basis to help you keep up with the latest vulnerabilities. We are constantly working on updating and improving our modules, but you can find some highlights from this week’s update below:

MongoDB operation injection module
WordPress github-btn XSS
HelpJuice XSS
Express (serve static) open redirect

Detectify

Complete External Attack Surface Management for AppSec and ProdSec teams.

Check out more content

Product Updates

Introducing Protocol Discovery to stop guessing what’s behind your open ports

Most tools will just tell you that a port is open. We’ve decided that’s not enough. TLDR: We’ve launched Protocol Discovery, a custom-built engine designed …

February 24, 2026

Product Updates

Introducing Detectify Internal Scanning for internal scanning behind the firewall

TL;DR We’re launching Internal Scanning, bringing our proprietary security engines, research-led crawling and fuzzing engine for internal vulnerability scanning behind your firewall. Built by Detectify’s …

February 03, 2026

Product Updates

Security Update: Critical RCE in React Server Components & Next.js (CVE-2025-55182)

A Critical Remote Code Execution (RCE) vulnerability, identified as CVE-2025-55182, has been discovered in Next.js applications utilizing React Server Components (RSC) and Server Actions. This …

December 05, 2025

Product Updates

Detectify AI-Researcher Alfred gets smarter with threat actor intelligence

Six months after launch, Alfred, the AI Agent that autonomously builds security tests, has revolutionized our workflow. Alfred has delivered over 450 validated tests against …

November 10, 2025