YiJiuSmile kkFileViewOfficeEdit Unrestricted File Upload Vulnerability

A critical unrestricted file upload vulnerability has been identified in YiJiuSmile kkFileViewOfficeEdit versions prior to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd. The vulnerability exists in the 'fileUpload' function of the '/fileUpload' endpoint. This flaw allows for the remote upload of potentially dangerous files that can be executed within the application's environment.

Impact

Exploitation of this vulnerability allows for unrestricted file uploads, which can lead to the execution of arbitrary code on the server. By uploading a crafted file, such as a template file with embedded commands, it is possible to execute system commands through the application's file processing features. This could also involve overwriting existing files or libraries with malicious payloads.

Reproduction

To reproduce this vulnerability, send a POST request to the '/fileUpload' endpoint with a file that exploits the upload functionality. The request must include the 'file' argument, which can be manipulated to upload files of harmful types. Once the file is uploaded, access it through the application to trigger the execution of any embedded commands.