JeecgBoot Improper Authorization Vulnerability in Excel Export Function

A vulnerability allowing improper authorization has been identified in JeecgBoot versions through 3.8.2. The issue resides in the '/sys/tenant/exportXls' endpoint, where authorization checks are either missing or inadequately enforced. This flaw enables authenticated users to export a comprehensive Excel file containing details of all tenants in the system, including names, IDs, and other sensitive information. The vulnerability can be exploited remotely, and a public exploit is available.

Impact

Exploitation of this vulnerability allows any authenticated user to access and download sensitive tenant information, which could be used for malicious purposes such as targeting high-value tenants for further attacks or gaining competitive intelligence.

Reproduction

To reproduce this vulnerability, an authenticated user with low privileges can send a GET request to the '/sys/tenant/exportXls' endpoint without any parameters. The application will respond by generating and returning an Excel file that includes a list of all tenants in the system, along with their names, IDs, and other details. This exploitation takes advantage of the lack of proper authorization controls on the endpoint.