Loading
license.php in system-portal before 1.6.2 in op5 Monitor and op5 Appliance before 5.5.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the timestamp parameter for an install action.
Use CWE-94, Op5 vendor hub and Monitor product page to widen CVE-2012-0261 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2012-0264, CVE-2012-0262 and CVE-2008-5028 for nearby disclosures in the same product family.