EIP-2026-104086

This Metasploit module exploits a feature in Splunk 5.0 where a custom application can be uploaded and executed via the 'script' search command, allowing remote code execution. It authenticates as an admin user, uploads a malicious app, and triggers payload execution.