Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
In the python-libnmap package through 0.7.2 for Python, remote command execution can occur (if used in a client application that does not validate arguments).
Advisories for Pypi/Python-Libnmap package
2022
2019
XPath Injection
libnmap is affected by an XML Injection vulnerability. By crafting an XML payload, an attacker could execute a Denial of service (DoS) attack.