CVE-2023-2523 PoC — Weaver E-Office 代码问题漏洞

Source

https://github.com/Any3ite/CVE-2023-2523

Associated Vulnerability

Title:Weaver E-Office 代码问题漏洞 (CVE-2023-2523)
Description:Weaver E-Office是中国泛微科技（Weaver）公司的一个协同办公系统。 Weaver E-Office 9.5版本存在代码问题漏洞，该漏洞源于App/Ajax/ajax.php?action=mobile_upload_save 存在未知函数，通过参数 upload_quwan 导致不受限制的上传。

Readme

# CVE-2023-2523
# CVE-2023-2523

File Snapshot


 [4.0K]  /data/pocs/258c491b113f58d984c1eca0d443163a49b4dbfa
├── [3.5K]  exploit.go
└── [  32]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!