Lucene search
K
IpaAppgoat

8 matches found

CVE
CVE
added 2017/06/09 4:0 p.m.54 views

CVE-2017-2179

CVE-2017-2179 (and related CVEs 2017-2181/2182) concern the Hands-on Vulnerability Learning Tool “AppGoat” for Web Application, version 3.0.2 and earlier. Affected component/technology is the AppGoat web application; root cause details are not fully disclosed in the provided documents, but the en...

8.8CVSS8.9AI score0.02325EPSS
CVE
CVE
added 2017/04/28 4:0 p.m.51 views

CVE-2017-2101

CVE-2017-2101 affects the Hands-on Vulnerability Learning Tool “AppGoat” for Web Application (V3.0.0 and earlier). The vulnerability is an authentication bypass that allows a remote, unauthenticated attacker to perform arbitrary operations. Impact details indicate arbitrary operations can be exec...

7.5CVSS7.3AI score0.01488EPSS
CVE
CVE
added 2017/04/28 4:0 p.m.50 views

CVE-2017-2099

The CVE-2017-2099 entry concerns the Hands-on Vulnerability Learning Tool “AppGoat” for Web Application (V3.0.0 and earlier). The connected JVN entries and NVD description indicate a remote code execution vulnerability, but the vectors are not specified in the documents provided. Affected product...

6.8CVSS6.8AI score0.01501EPSS
CVE
CVE
added 2017/06/09 4:0 p.m.50 views

CVE-2017-2181

CVE-2017-2181 affects the Hands-on Vulnerability Learning Tool “AppGoat” Web Application, versions 3.0.2 and earlier. The provided documents state a vulnerability that allows remote attackers to obtain local files via unspecified vectors. The root cause, exact exploit path, affected components, a...

8.8CVSS8.3AI score0.01507EPSS
CVE
CVE
added 2017/04/28 4:0 p.m.49 views

CVE-2017-2102

CVE-2017-2102 describes a cross-site request forgery (CSRF) vulnerability in Hands-on Vulnerability Learning Tool “AppGoat” for Web Application, version 3.0.0 and earlier. The issue can allow remote attackers to hijack the authentication of administrators through unspecified vectors. Connected so...

8.8CVSS8.8AI score0.00769EPSS
CVE
CVE
added 2017/04/28 4:0 p.m.48 views

CVE-2017-2100

The CVE-2017-2100 entry applies to the Hands-on Vulnerability Learning Tool “AppGoat” for Web Application, specifically versions up to V3.0.1. The vulnerability is a DNS rebinding issue that can allow arbitrary code execution when a user visits a malicious page, as described by JVN/Japanese advis...

6.8CVSS6.2AI score0.00956EPSS
CVE
CVE
added 2017/06/09 4:0 p.m.48 views

CVE-2017-2182

CVE-2017-2182 affects the Hands-on Vulnerability Learning Tool “AppGoat” Web Application (V3.0.2 and earlier). The issue allows remote attackers to obtain local files via unspecified vectors; the core details, affected component (AppGoat Web app), and impact are stated in public records, with no ...

8.8CVSS8.3AI score0.01507EPSS
CVE
CVE
added 2017/06/09 4:0 p.m.47 views

CVE-2017-2180

CVE-2017-2180 affects AppGoat, a Hands-on Vulnerability Learning Tool for Web Application (versions 3.0.2 and earlier). The vulnerability is an information disclosure flaw where, by visiting a specially crafted URL, an attacker can obtain a local file specified by the attacker. The issue is confi...

4.3CVSS4.5AI score0.0114EPSS