version: '3.8'

networks:
  vuln-net:
    driver: bridge
    ipam:
      config:
        - subnet: 192.168.1.0/24

services:
  vulnerable-wordpress:
    build:
      context: ./vulnerable
      dockerfile: Dockerfile
    container_name: cve-2024-45590-vulnerable
    networks:
      vuln-net:
        ipv4_address: 192.168.1.100
    ports:
      - "8080:80"
    environment:
      WORDPRESS_DB_HOST: db
      WORDPRESS_DB_USER: wordpress
      WORDPRESS_DB_PASSWORD: wordpress
      WORDPRESS_DB_NAME: wordpress
    depends_on:
      - db

  db:
    image: mysql:8.0
    container_name: cve-2024-45590-db
    networks:
      vuln-net:
        ipv4_address: 192.168.1.101
    environment:
      MYSQL_ROOT_PASSWORD: root
      MYSQL_DATABASE: wordpress
      MYSQL_USER: wordpress
      MYSQL_PASSWORD: wordpress

  scanner:
    build:
      context: .
      dockerfile: Dockerfile
    container_name: cve-2024-45590-scanner
    networks:
      vuln-net:
        ipv4_address: 192.168.1.200
    volumes:
      - ./results:/app/results
    command: ["--target", "192.168.1.100"]
    depends_on:
      - vulnerable-wordpress