Appgoat

CVEs (8)

CVE	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2017-2182	Hig	0.57	8.8	0.01	Jun 9, 2017	Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors, a different vulnerability than CVE-2017-2179 and CVE-2017-2181.
CVE-2017-2181	Hig	0.57	8.8	0.01	Jun 9, 2017	Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors, a different vulnerability than CVE-2017-2179 and CVE-2017-2182.
CVE-2017-2179	Hig	0.57	8.8	0.01	Jun 9, 2017	Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allows remote code execution via unspecified vectors, a different vulnerability than CVE-2017-2181 and CVE-2017-2182.
CVE-2017-2102	Hig	0.57	8.8	0.00	Apr 28, 2017	Cross-site request forgery (CSRF) vulnerability in Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.
CVE-2017-2101	Hig	0.47	7.3	0.00	Apr 28, 2017	Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote attackers to bypass authentication to perform arbitrary operations via unspecified vectors.
CVE-2017-2100	Med	0.41	6.3	0.00	Apr 28, 2017	Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.1 and earlier allows remote attackers to conduct DNS rebinding attacks via unspecified vectors.
CVE-2017-2099	Med	0.41	6.3	0.00	Apr 28, 2017	Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote code execution via unspecified vectors.
CVE-2017-2180	Med	0.28	4.3	0.00	Jun 9, 2017	Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors.