Reference Dockerfile containing software with known vulnerabilities.
Includes vulnerable binaries (bash shellshock, wget directory traversal) with CVE entries for testing Docker image scanning solutions.
For full details see: http://www.stindustries.net/docker/bad-dockerfile/
Created by Adrian Portelli.
Image available here: https://hub.docker.com/r/imiell/bad-dockerfile
But note that it's insecure!