Tiandy Easy7 Integrated Management Platform SQL Injection Vulnerability

A critical SQL injection vulnerability has been identified in the Tiandy Easy7 Integrated Management Platform, affecting versions prior to 7.17.0. The vulnerability exists in the '/rest/preSetTemplate/getRecByTemplateId' endpoint, where the 'id' parameter is susceptible to Union-based, Boolean-based, and Time-based injection techniques. This flaw allows unauthenticated remote attackers to bypass database security measures and rapidly extract the entire database, including administrative credentials and system configurations. The exploitation of Union-based queries poses the greatest risk to data confidentiality and integrity.

Impact

Exploitation of this vulnerability allows for unauthorized SQL injection, enabling attackers to manipulate database queries. This could lead to unauthorized data access, data modification, or in some cases, executing administrative commands through the database.