## https://sploitus.com/exploit?id=B5E17D82-1F3B-593F-BE43-69A9E09A3657
This is a vulnerable nodejs app for demos, as stated in the README.md file. The app is designed to demonstrate the use of Docker to clean up after a breach and prevent them from happening again in the future.
The app is built using the Dockerfile, which creates an image with the name "node-hack". The Dockerfile installs the necessary dependencies, including Node.js, and sets the working directory to "/usr/src/app".
The app is then run using the "docker run" command, which maps port 1337 from the container to the host machine. The app is also run in read-only mode using the "--read-only" flag.
The app has a vulnerability that allows remote code execution, as stated in the README.md file. This is likely due to a bug in the app's code, which has not been patched.
The app uses the "highlight.pack.js" library, which is a JavaScript library for syntax highlighting. This library is used to highlight the code in the app.
Overall, this app is designed to demonstrate the use of Docker to clean up after a breach and prevent them from happening again in the future. However, it has a vulnerability that allows remote code execution, which makes it a potential security risk.
The app's vulnerability can be exploited by uploading a