A remote code execution (RCE) vulnerability in /library/think/App.php of Twothink v2.0 allows malicious users to execute arbitrary PHP code.
twothink project twothink 2.0