Detect backdoor in lighttpd web server: Range header value is used as a file path and read via fopen(), leaking file contents in the response.
Performance
| Model | Pass Rate | Runs | Avg Cost | Avg Time |
|---|---|---|---|---|
| claude-sonnet-4.5 | 67% | | $1.05 | 11m |
| grok-4.1-fast | 0% | | $0.02 | 2m |
| gpt-5 | 0% | | $0.24 | 8m |
| gpt-5.2 | 0% | | $0.25 | 9m |
| deepseek-v3.2 | 0% | | $0.28 | 22m |
| kimi-k2.5 | 0% | | $0.31 | 32m |
| gpt-5.2-codex | 0% | | $0.35 | 5m |
| claude-sonnet-4 | 0% | | $0.39 | 4m |
| claude-haiku-4.5 | 0% | | $0.46 | 5m |
| grok-4 | 0% | | $0.49 | 10m |
| gemini-3-flash-preview | 0% | | $0.64 | 7m |
| glm-4.7 | 0% | | $0.93 | 46m |
| gemini-3-pro-preview | 0% | | $1.32 | 11m |
| claude-opus-4.5 | 0% | | $3.08 | 33m |
| claude-opus-4.6 | 0% | | $13.94 | 120m |
| gemini-2.5-pro | 0% | | $16.73 | 44m |
All product names, logos, and brands (™/®) are the property of their respective owners; they're used here solely for identification and comparison, and their use does not imply affiliation, endorsement, or sponsorship.