Skip to content
A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.
Python
Branch: master
Clone or download

Latest commit

Fetching latest commit…
Cannot retrieve the latest commit at this time.

Files

Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
Firebase-Write-Permission-Exploit.py
README.md
Write-Exploit.png
old.py

README.md

Insecure-Firebase-Exploit

A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.

Usage:

Firebase-Write-Permission-Exploit.py This is the Updated Version of Exploit i made. Now simply give the Database Name, File Name You wish to create, Your Information. And Write it to the Insecure/vulnerable firebase databases.

Usage POC Image

python Firebase-Write-Permission-Exploit.py

Enter Firebase Databse Name: <Database Name Here>
Enter Your Filename: <File Name Here>
Enter your name: <Your Name Here>
Enter your email: <Your Email Here>
Enter your Blog: <Your Contact link Here>

Thanks to

Thanks to friends for a better POC idea and helping with errors.

Daniyal Nasir: https://www.facebook.com/786daniyal Ijaz Ur Rahim: https://www.facebook.com/MisterDebugger

You can’t perform that action at this time.