← Back

Appgoat

appgoat

Vendor: Ipa • 8 CVEs

CVEs (8)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2017-2182
1Ipa
1Appgoat
May 13, 2026
Jun 9, 2017
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors, a different vulnerability than CVE-2017-2179 and CVE-2017-2181.
CVE-2017-2181
1Ipa
1Appgoat
May 13, 2026
Jun 9, 2017
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors, a different vulnerability than CVE-2017-2179 and CVE-2017-2182.
CVE-2017-2180
1Ipa
1Appgoat
May 13, 2026
Jun 9, 2017
N/A· v4
4.3 MEDIUM· v3
4.3 MEDIUM· v2
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors.
CVE-2017-2179
1Ipa
1Appgoat
May 13, 2026
Jun 9, 2017
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allows remote code execution via unspecified vectors, a different vulnerability than CVE-2017-2181 and CVE-2017-2182.
CVE-2017-2102
1Ipa
1Appgoat
May 13, 2026
Apr 28, 2017
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Cross-site request forgery (CSRF) vulnerability in Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecif...Show more
Cross-site request forgery (CSRF) vulnerability in Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.Show less
CVE-2017-2101
1Ipa
1Appgoat
May 13, 2026
Apr 28, 2017
N/A· v4
7.3 HIGH· v3
7.5 HIGH· v2
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote attackers to bypass authentication to perform arbitrary operations via unspecified vectors.
CVE-2017-2100
1Ipa
1Appgoat
May 13, 2026
Apr 28, 2017
N/A· v4
6.3 MEDIUM· v3
6.8 MEDIUM· v2
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.1 and earlier allows remote attackers to conduct DNS rebinding attacks via unspecified vectors.
CVE-2017-2099
1Ipa
1Appgoat
May 13, 2026
Apr 28, 2017
N/A· v4
6.3 MEDIUM· v3
6.8 MEDIUM· v2
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote code execution via unspecified vectors.