Network Tools 0.2 for PHP-Nuke allows remote attackers to execute commands on the server via shell metacharacters in the $hostinput variable.
https://exchange.xforce.ibmcloud.com/vulnerabilities/7578
http://phpnukerz.org/modules.php?name=Downloads&d_op=viewsdownload&sid=32