Opmantek NMIS before 4.3.7c has command injection via man, finger, ping, trace, and nslookup in the tools.pl CGI script. Versions before 8.5.12G might be affected in non-default configurations.
[
{
"product": "Opmantek NMIS before 8.5.12G",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Opmantek NMIS before 8.5.12G"
}
]
}
]