Command Injection Vulnerability in Opmantek NMIS CGI Script

Command Injection Vulnerability in Opmantek NMIS CGI Script

CVE-2016-6534 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:P

Opmantek NMIS before 4.3.7c has command injection via man, finger, ping, trace, and nslookup in the tools.pl CGI script. Versions before 8.5.12G might be affected in non-default configurations.

Learn more about our Web Application Penetration Testing UK.