CVE-2009-1678

bitweaver < 2.6 - Path Traversal and Arbitrary File Write via Version Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1678. PoCs published by Nine:Situations:Group.

AI-analyzed exploit summary This exploit leverages a directory traversal and arbitrary file creation vulnerability in Bitweaver's boards_rss.php to achieve remote code execution. It manipulates the 'version' parameter to inject PHP code into arbitrary files, bypassing authentication via user-controlled 'display name' fields.

Description

Directory traversal vulnerability in the saveFeed function in rss/feedcreator.class.php in Bitweaver 2.6 and earlier allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the version parameter to boards/boards_rss.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nine:Situations:Group · phpwebappsphp

https://www.exploit-db.com/exploits/8659

View Code ZIP pw:eip

This exploit leverages a directory traversal and arbitrary file creation vulnerability in Bitweaver's boards_rss.php to achieve remote code execution. It manipulates the 'version' parameter to inject PHP code into arbitrary files, bypassing authentication via user-controlled 'display name' fields.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Bitweaver <= 2.6.0

Auth required

Prerequisites: Valid user account with permission to modify 'display name' · Curl extension enabled in PHP

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/35057

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/34910

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/503435

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/8659

Scores

EPSS 0.0243

EPSS Percentile 82.1%

Details

CWE

CWE-22

Status published

Products (9)

bitweaver/bitweaver 1.1

bitweaver/bitweaver 1.1.1_beta

bitweaver/bitweaver 1.2.1

bitweaver/bitweaver 1.3

bitweaver/bitweaver 1.3.1

bitweaver/bitweaver 2.0.0

bitweaver/bitweaver 2.0.2

bitweaver/bitweaver 2.5

bitweaver/bitweaver < 2.6

Published May 18, 2009

Tracked Since Feb 18, 2026