README.md
Rendering markdown...
services:
vuln-db:
image: mysql:8.0
container_name: cve5718-vuln-db
environment:
MYSQL_DATABASE: wordpress
MYSQL_USER: wordpress
MYSQL_PASSWORD: wordpress
MYSQL_ROOT_PASSWORD: rootpass
volumes:
- vuln-db-data:/var/lib/mysql
networks:
- cve5718-net
healthcheck:
test: ["CMD-SHELL", "mysqladmin ping -h localhost -uroot -prootpass --silent"]
interval: 10s
timeout: 5s
retries: 20
patched-db:
image: mysql:8.0
container_name: cve5718-patched-db
environment:
MYSQL_DATABASE: wordpress
MYSQL_USER: wordpress
MYSQL_PASSWORD: wordpress
MYSQL_ROOT_PASSWORD: rootpass
volumes:
- patched-db-data:/var/lib/mysql
networks:
- cve5718-net
healthcheck:
test: ["CMD-SHELL", "mysqladmin ping -h localhost -uroot -prootpass --silent"]
interval: 10s
timeout: 5s
retries: 20
vuln:
build:
context: .
dockerfile: vuln/Dockerfile
args:
DND_VERSION: "1.3.9.6"
container_name: cve5718-vuln
depends_on:
vuln-db:
condition: service_healthy
environment:
WORDPRESS_DB_HOST: vuln-db:3306
WORDPRESS_DB_NAME: wordpress
WORDPRESS_DB_USER: wordpress
WORDPRESS_DB_PASSWORD: wordpress
SITE_URL: "http://localhost:8081"
DND_VERSION: "1.3.9.6"
LAB_PROFILE: "vuln"
ENABLE_LOCAL_RCE_PROOF: "yes"
ports:
- "8081:80"
networks:
- cve5718-net
healthcheck:
test: ["CMD-SHELL", "curl -fsS http://localhost/cve-2026-5718-lab/ >/dev/null || exit 1"]
interval: 10s
timeout: 5s
retries: 30
patched:
build:
context: .
dockerfile: patched/Dockerfile
args:
DND_VERSION: "1.3.9.7"
container_name: cve5718-patched
depends_on:
patched-db:
condition: service_healthy
environment:
WORDPRESS_DB_HOST: patched-db:3306
WORDPRESS_DB_NAME: wordpress
WORDPRESS_DB_USER: wordpress
WORDPRESS_DB_PASSWORD: wordpress
SITE_URL: "http://localhost:8082"
DND_VERSION: "1.3.9.7"
LAB_PROFILE: "patched"
ENABLE_LOCAL_RCE_PROOF: "no"
ports:
- "8082:80"
networks:
- cve5718-net
healthcheck:
test: ["CMD-SHELL", "curl -fsS http://localhost/cve-2026-5718-lab/ >/dev/null || exit 1"]
interval: 10s
timeout: 5s
retries: 30
volumes:
vuln-db-data:
patched-db-data:
networks:
cve5718-net:
driver: bridge