YiFang CMS Information Disclosure Vulnerability in Migrate.php Export Function
Vulnerability
An information disclosure vulnerability exists in YiFang CMS versions through 2.0.5. The issue arises in the 'exportInstallTable' function within 'app/utils/base/database/Migrate.php', where database information can be leaked without authentication. The vulnerability is accessible via the 'api/migrate/exportInstallTable' route, allowing unauthorized users to export database table structures and contents. This exploitation could be initiated remotely.
Impact
Exploitation of this vulnerability leads to unauthorized access to sensitive database information, including table structures and data, which could be misused for further attacks or to compromise the application.
Reproduction
To reproduce this vulnerability, send a request to the 'api/migrate/exportInstallTable' endpoint with the 'database' and 'version' parameters. No authentication is required to access this endpoint, and the response will include the exported database information.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.