OpenVPN Monitor versions 1.1.3 and below suffer from an injection vulnerability that allows an attacker to inject arbitrary commands into the OpenVPN server management interface socket.
More https://packetstormsecurity.com/files/164278/OpenVPN-Monitor-1.1.3-Command-Injection.html
