保護DataHogo
Security Encyclopedia/APIs (Advanced)
mediumCWE-770A04:2021

GraphQL Batching Attack

GraphQL endpoints accepting arrays of operations without size limits, enabling attackers to bypass rate limiting by bundling thousands of requests into a single HTTP call.

How It Works

GraphQL supports batching — sending an array of operations in one HTTP request. Batching is meant for performance, but without size limits, attackers batch thousands of login attempts or resource requests into one HTTP call. Your rate limiter sees one request and lets it through, but the server executes thousands of operations.

Vulnerable Code
// BAD: batching with no size limit
// Attacker sends: [{query: 'mutation login(email:"a"...)'}, {query: ...}, ...x1000]
app.post('/graphql', graphqlHTTP({ schema }));
// Rate limiter sees 1 request, but server runs 1000 mutations
Secure Code
// GOOD: limit batch size
app.post('/graphql', (req, res, next) => {
  const body = req.body;
  if (Array.isArray(body) && body.length > 10) {
    return res.status(400).json({ error: 'Batch size limit exceeded' });
  }
  return graphqlHTTP({ schema })(req, res, next);
});

Real-World Example

GraphQL batching was used to bypass SMS OTP rate limiting on several major platforms — attackers could try hundreds of OTP codes in a single batched request. HackerOne has documented multiple bounty payouts for this issue.

How to Prevent It

  • Limit batch size to a small number (5-10 operations per request)
  • Consider disabling batching entirely if your clients don't use it
  • Apply rate limiting per operation within a batch, not per HTTP request
  • Use a GraphQL server that supports operation-level rate limiting (Apollo Router, GraphQL Armor)

Affected Technologies

nodejsNext.js

Data Hogo detects this vulnerability automatically.

Scan Your Repo Free

Related Vulnerabilities

API Documentation Exposed in Production

low

Swagger UI, ReDoc, or other API documentation interfaces publicly accessible in production, giving attackers a free interactive map of every endpoint, parameter, and authentication method.

CWE-200A05:2021

GraphQL Introspection Enabled in Production

medium

GraphQL introspection is left enabled in production, allowing anyone to query the complete schema and discover all types, fields, mutations, and their argument structures.

CWE-200A05:2021

GraphQL Without Query Depth Limit

medium

GraphQL API with no depth limit on nested queries, allowing attackers to craft deeply nested queries that exhaust server resources and cause denial of service.

CWE-770A04:2021

Excessive Data Exposure

medium

API endpoints returning full database objects with sensitive fields instead of only the fields the client actually needs, exposing password hashes, internal IDs, admin flags, and other sensitive data.

CWE-213A03:2021