A simple and quick python script to exploit CVE-2019-16278 (Nostromo 1.9.6) from a Directory Traversal vulnerability in the function http_verify in Nostromo nhttpd that leads to unauthenticated RCE via a crafted HTTP request. Only takes in host and port of web server as required arguments. Optional argument is command to to execute (the default command is 'id').
Use: nostroxploit.py [host] [port] ([command])