Refine your search
8 vulnerabilities found for Hands-on Vulnerability Learning Tool "AppGoat" for Web Application by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)
jvndb-2017-000113
Vulnerability from jvndb
Published
2017-06-06 14:21
Modified
2017-11-27 17:22
Severity ?
Summary
Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to remote code execution
Details
AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool "AppGoat" for Web Application contains a remote code execution vulnerability.
Note that this vulnerability is different from JVN#80238098 and JVN#01404851.
Masato Kinugawa reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000113.html",
"dc:date": "2017-11-27T17:22+09:00",
"dcterms:issued": "2017-06-06T14:21+09:00",
"dcterms:modified": "2017-11-27T17:22+09:00",
"description": "AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application contains a remote code execution vulnerability.\r\n\r\nNote that this vulnerability is different from JVN#80238098 and JVN#01404851.\r\n\r\nMasato Kinugawa reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000113.html",
"sec:cpe": {
"#text": "cpe:/a:ipa:appgoat",
"@product": "Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application",
"@vendor": "INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "6.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
{
"@score": "6.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000113",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN20870477/index.html",
"@id": "JVN#20870477",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2181",
"@id": "CVE-2017-2181",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2181",
"@id": "CVE-2017-2181",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
}
],
"title": "Hands-on Vulnerability Learning Tool \"AppGoat\" vulnerable to remote code execution"
}
jvndb-2017-000112
Vulnerability from jvndb
Published
2017-06-06 14:20
Modified
2017-11-27 17:22
Severity ?
Summary
Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to information disclosure
Details
AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool "AppGoat" for Web Application contains an information disclosure vulnerability.
Masato Kinugawa reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000112.html",
"dc:date": "2017-11-27T17:22+09:00",
"dcterms:issued": "2017-06-06T14:20+09:00",
"dcterms:modified": "2017-11-27T17:22+09:00",
"description": "AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application contains an information disclosure vulnerability.\r\n\r\nMasato Kinugawa reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000112.html",
"sec:cpe": {
"#text": "cpe:/a:ipa:appgoat",
"@product": "Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application",
"@vendor": "INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
{
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000112",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN32120290/index.html",
"@id": "JVN#32120290",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2180",
"@id": "CVE-2017-2180",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2180",
"@id": "CVE-2017-2180",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-200",
"@title": "Information Exposure(CWE-200)"
}
],
"title": "Hands-on Vulnerability Learning Tool \"AppGoat\" vulnerable to information disclosure"
}
jvndb-2017-000111
Vulnerability from jvndb
Published
2017-06-06 14:19
Modified
2017-11-27 17:22
Severity ?
Summary
Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to remote code execution
Details
AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool "AppGoat" for Web Application contains a remote code execution vulnerability.
Note that this vulnerability is different from JVN#20870477 and JVN#01404851.
Masato Kinugawa reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000111.html",
"dc:date": "2017-11-27T17:22+09:00",
"dcterms:issued": "2017-06-06T14:19+09:00",
"dcterms:modified": "2017-11-27T17:22+09:00",
"description": "AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application contains a remote code execution vulnerability.\r\n\r\nNote that this vulnerability is different from JVN#20870477 and JVN#01404851.\r\n\r\nMasato Kinugawa reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000111.html",
"sec:cpe": {
"#text": "cpe:/a:ipa:appgoat",
"@product": "Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application",
"@vendor": "INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "6.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
{
"@score": "6.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000111",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN80238098/index.html",
"@id": "JVN#80238098",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2179",
"@id": "CVE-2017-2179",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2179",
"@id": "CVE-2017-2179",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
}
],
"title": "Hands-on Vulnerability Learning Tool \"AppGoat\" vulnerable to remote code execution"
}
jvndb-2017-000114
Vulnerability from jvndb
Published
2017-06-06 14:19
Modified
2017-11-27 17:22
Severity ?
Summary
Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to remote code execution
Details
AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool "AppGoat" for Web Application contains a remote code execution vulnerability.
Note that this vulnerability is different from JVN#80238098 and JVN#20870477.
Masato Kinugawa reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000114.html",
"dc:date": "2017-11-27T17:22+09:00",
"dcterms:issued": "2017-06-06T14:19+09:00",
"dcterms:modified": "2017-11-27T17:22+09:00",
"description": "AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application contains a remote code execution vulnerability.\r\n\r\nNote that this vulnerability is different from JVN#80238098 and JVN#20870477.\r\n\r\nMasato Kinugawa reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000114.html",
"sec:cpe": {
"#text": "cpe:/a:ipa:appgoat",
"@product": "Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application",
"@vendor": "INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "6.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
{
"@score": "6.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000114",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN01404851/index.html",
"@id": "JVN#01404851",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2182",
"@id": "CVE-2017-2182",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2182",
"@id": "CVE-2017-2182",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
}
],
"title": "Hands-on Vulnerability Learning Tool \"AppGoat\" vulnerable to remote code execution"
}
jvndb-2017-000019
Vulnerability from jvndb
Published
2017-02-09 14:47
Modified
2017-06-01 11:30
Severity ?
Summary
Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to DNS rebinding
Details
AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool "AppGoat" for Web Application contains a DNS rebinding vulnerability.
Shoji Baba reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000019.html",
"dc:date": "2017-06-01T11:30+09:00",
"dcterms:issued": "2017-02-09T14:47+09:00",
"dcterms:modified": "2017-06-01T11:30+09:00",
"description": "AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application contains a DNS rebinding vulnerability.\r\n\r\nShoji Baba reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000019.html",
"sec:cpe": {
"#text": "cpe:/a:ipa:appgoat",
"@product": "Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application",
"@vendor": "INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "6.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
{
"@score": "6.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000019",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN87662835/index.html",
"@id": "JVN#87662835",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2100",
"@id": "CVE-2017-2100",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2100",
"@id": "CVE-2017-2100",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Hands-on Vulnerability Learning Tool \"AppGoat\" vulnerable to DNS rebinding"
}
jvndb-2017-000018
Vulnerability from jvndb
Published
2017-02-09 14:47
Modified
2017-06-01 11:30
Severity ?
Summary
Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to remote code execution
Details
AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool "AppGoat" for Web Application contains a remote code execution vulnerability.
Shoji Baba reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000018.html",
"dc:date": "2017-06-01T11:30+09:00",
"dcterms:issued": "2017-02-09T14:47+09:00",
"dcterms:modified": "2017-06-01T11:30+09:00",
"description": "AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application contains a remote code execution vulnerability.\r\n\r\nShoji Baba reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000018.html",
"sec:cpe": {
"#text": "cpe:/a:ipa:appgoat",
"@product": "Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application",
"@vendor": "INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "6.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
{
"@score": "6.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000018",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN71666779/index.html",
"@id": "JVN#71666779",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2099",
"@id": "CVE-2017-2099",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2099",
"@id": "CVE-2017-2099",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-94",
"@title": "Code Injection(CWE-94)"
}
],
"title": "Hands-on Vulnerability Learning Tool \"AppGoat\" vulnerable to remote code execution"
}
jvndb-2017-000021
Vulnerability from jvndb
Published
2017-02-09 14:40
Modified
2017-06-01 11:30
Severity ?
Summary
Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to cross-site request forgery
Details
AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool "AppGoat" for Web Application contains a cross-site request forgery vulnerability.
Shoji Baba reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| Type | URL | |
|---|---|---|
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000021.html",
"dc:date": "2017-06-01T11:30+09:00",
"dcterms:issued": "2017-02-09T14:40+09:00",
"dcterms:modified": "2017-06-01T11:30+09:00",
"description": "AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application contains a cross-site request forgery vulnerability.\r\n\r\nShoji Baba reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000021.html",
"sec:cpe": {
"#text": "cpe:/a:ipa:appgoat",
"@product": "Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application",
"@vendor": "INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "5.1",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
{
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000021",
"sec:references": [
{
"#text": "https://jvn.jp/en/jp/JVN39008927/index.html",
"@id": "JVN#39008927",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2102",
"@id": "CVE-2017-2102",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2102",
"@id": "CVE-2017-2102",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-352",
"@title": "Cross-Site Request Forgery(CWE-352)"
}
],
"title": "Hands-on Vulnerability Learning Tool \"AppGoat\" vulnerable to cross-site request forgery"
}
jvndb-2017-000020
Vulnerability from jvndb
Published
2017-02-09 14:39
Modified
2017-06-01 11:30
Severity ?
Summary
Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to authentication bypass
Details
AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool "AppGoat" for Web Application contains an authentication bypass vulnerability.
Shoji Baba reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000020.html",
"dc:date": "2017-06-01T11:30+09:00",
"dcterms:issued": "2017-02-09T14:39+09:00",
"dcterms:modified": "2017-06-01T11:30+09:00",
"description": "AppGoat provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA) is a hands-on vulnerability learning tool. Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application contains an authentication bypass vulnerability.\r\n\r\nShoji Baba reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000020.html",
"sec:cpe": {
"#text": "cpe:/a:ipa:appgoat",
"@product": "Hands-on Vulnerability Learning Tool \"AppGoat\" for Web Application",
"@vendor": "INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN (IPA)",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "7.5",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
{
"@score": "7.3",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2017-000020",
"sec:references": [
{
"#text": "https://jvn.jp/en/jp/JVN88176589/index.html",
"@id": "JVN#88176589",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2101",
"@id": "CVE-2017-2101",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2101",
"@id": "CVE-2017-2101",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-264",
"@title": "Permissions(CWE-264)"
}
],
"title": "Hands-on Vulnerability Learning Tool \"AppGoat\" vulnerable to authentication bypass"
}