Closed omer88 closed 6 years ago
As evident from this report there is a security issue with the current Firebase Database Rules:
Attackers can manipulate the author under /books/$book_id/offers/$offer_id because of write permission under /books/$book_id.
/books/$book_id/offers/$offer_id
/books/$book_id
As evident from this report there is a security issue with the current Firebase Database Rules:
Attackers can manipulate the author under
/books/$book_id/offers/$offer_idbecause of write permission under/books/$book_id.