CVE-2020-24899

Nagios XI 5.7.2 is affected by a remote code execution (RCE) vulnerability. An authenticated user can inject additional commands into normal webapp query.

References

https://code610.blogspot.com/2020/08/postauth-rce-in-nagios-572.html