nmap4j 1.1.0 allows attackers to execute arbitrary commands via shell metacharacters in an includeHosts call.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-78,
Products Affected