Nagios XI before version 5.11.3 exists to contain a remote code execution (RCE) vulnerability via the component command_test.php.
nagios nagios xi