Add first pgAdmin and Ruby on Rails deployments

danielpacak · danielpacak · commit acc34fcc665c · 2025-03-18T15:40:38.000+01:00
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1 @@
+.idea
diff --git a/README.md b/README.md
@@ -1,2 +1,35 @@
-# vulnerable-kubernetes-deployments
-For learning, research and testing and /evading/ Kubernetes security tools.
+# Vulnerable Kubernetes Deployments
+
+For learning, researching, testing and \[ evaluating | evading \] Kubernetes
+security tools. This project is inspired by [Vulhub] but uses Kubernetes
+deployments instead of Docker Compose services.
+
+[Vulhub]: https://github.com/vulhub/vulhub
+
+## Quick Start
+
+Deploy a vulnerable pgAdmin:
+
+```
+k apply -f python/CVE-2023-5002/all.yaml
+```
+
+```
+k port-forward -n pgadmin-cve-2023-5002 svc/pgadmin 5050:5050
+```
+
+Open http://localhost:5050 in your web browser to access pgAdmin console.
+
+> Uninstall pgAdmin with:
+>
+> ```
+> k delete -f python/CVE-2023-5002/all.yaml
+> ```
+
+## Contributing
+
+At your own risk!
+
+## License
+
+TBD
diff --git a/python/CVE-2023-5002/README.md b/python/CVE-2023-5002/README.md
@@ -0,0 +1,3 @@
+# pgAdmin CVE-2023-5002
+
+https://github.com/vulhub/vulhub/tree/master/pgadmin/CVE-2023-5002
diff --git a/python/CVE-2023-5002/all.yaml b/python/CVE-2023-5002/all.yaml
@@ -0,0 +1,39 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: pgadmin-cve-2023-5002
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: pgadmin
+  namespace: pgadmin-cve-2023-5002
+spec:
+  selector:
+    app: pgadmin
+  ports:
+    - protocol: TCP
+      port: 5050
+      targetPort: 5050
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: pgadmin
+  namespace: pgadmin-cve-2023-5002
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: pgadmin
+  template:
+    metadata:
+      labels:
+        app: pgadmin
+    spec:
+      containers:
+        - name: pgadmin
+          image: docker.io/vulhub/pgadmin:7.6@sha256:efbd4438dd0b9832ec0be07d08a83100b8cee8b74b26330c8560a6b9005f5788
+          ports:
+            - containerPort: 5050
diff --git a/ruby/CVE-2018-3760/README.md b/ruby/CVE-2018-3760/README.md
@@ -0,0 +1,3 @@
+# Ruby CVE-2018-3760
+
+https://github.com/vulhub/vulhub/tree/master/rails/CVE-2018-3760
diff --git a/ruby/CVE-2018-3760/all.yaml b/ruby/CVE-2018-3760/all.yaml
@@ -0,0 +1,39 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: ruby-cve-2018-3760
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: ruby
+  namespace: ruby-cve-2018-3760
+spec:
+  selector:
+    app: ruby
+  ports:
+    - protocol: TCP
+      port: 3000
+      targetPort: 3000
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: ruby
+  namespace: ruby-cve-2018-3760
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: ruby
+  template:
+    metadata:
+      labels:
+        app: ruby
+    spec:
+      containers:
+        - name: ruby
+          image: docker.io/vulhub/rails:5.0.7@sha256:42655c82cfb23067a2057da6fea7d72115fd4175eb0c7a2ffb6918220e13a284
+          ports:
+            - containerPort: 3000

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+# pgAdmin CVE-2023-5002`
	`2`	`+`
	`3`	`+https://github.com/vulhub/vulhub/tree/master/pgadmin/CVE-2023-5002`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+# Ruby CVE-2018-3760`
	`2`	`+`
	`3`	`+https://github.com/vulhub/vulhub/tree/master/rails/CVE-2018-3760`