CVE-2017-2101

Hands-on Vulnerability Learning Tool “AppGoat” for Web Application V3.0.0 and earlier allows remote attackers to bypass authentication to perform arbitrary operations via unspecified vectors.