Perfree Go-Fastdfs-Web Improper Authorization Vulnerability in the DoInstall Interface

A vulnerability allowing unauthorized platform takeover has been identified in Perfree Go-FastDFS-Web versions through 1.3.7. The issue resides in the InstallController.java file, specifically within the doInstall interface. After the initial installation, the interface and its routing are not properly removed, allowing an attacker to initiate a second installation. This exploitation can lead to unauthorized access to system privileges. Additionally, the vulnerability permits unrestricted registration by bypassing validation checks on server accessibility and email format, enabling the creation of user accounts that can access sensitive information and restore deleted files.

Impact

Exploitation of this vulnerability allows for unauthorized access to platform administrative privileges, enabling the attacker to manipulate user data, server information, and recover deleted files.

Reproduction

To reproduce this vulnerability, first install Go-FastDFS-Web version 1.3.7. After the initial installation, the doInstall interface remains active and can be accessed again. Send a POST request to the /install/doInstall endpoint with the required parameters, including server address, username, password, and email. This request can be made without any authentication, as the vulnerability allows for unauthorized actions.