VERA: A Flexible Model-Based Vulnerability Testing Tool