EIP-2026-103926

This Metasploit module exploits an authentication bypass and file upload vulnerability in HP SiteScope to achieve remote code execution. It creates a user with empty credentials, authenticates, and uploads a malicious JSP payload to execute arbitrary code.