Cisco Data Center Network Manager HostEnclHandler getVmHostData SQL Injection Vulnerability Exploit

This module uses an authentication bypass and a SQL injection vulnerability in order to upload and execute a JSP file in the Wildfly virtual file system webapps directory.
Platform: 
Vulnerabilty ID: 
CVE-2019-15976
Released Date: 
Tuesday, January 21, 2020 - 18:00