Nagios NRPE is vulnerable to command injection. It has Insufficient Filtering because, for example, nasty_metachars interprets \n as the character \ and the character n (not as the \n newline sequence).
herolab.usd.de/security-advisories/
herolab.usd.de/security-advisories/usd-2020-0002/
lists.fedoraproject.org/archives/list/[email protected]/message/2DNGKXVDB43E3KQRA6W5QZT3Z46XZLQM/
secdb.alpinelinux.org/v3.10/main.yaml
secdb.alpinelinux.org/v3.11/main.yaml
secdb.alpinelinux.org/v3.12/main.yaml
secdb.alpinelinux.org/v3.9/main.yaml