A vulnerability has been identified in Bitweaver, which could be exploited by attackers to compromise a vulnerable web server. This issue is caused by an input validation error in the "boards/boards_rss.php" script that does not validate the "version" parameter, which could be exploited by remote attackers to create arbitrary files containing malicious PHP code and execute arbitrary commands with the privileges of the web server.
Vulnerable Products
Vulnerable Software: Bitweaver version 2.6 and prior
