Request History

4 previous requests available

• Restore to current request
• jvninfos/view/48499
• jvninfos/index/page:128/sort:last_updated_date/direction:asc
• cvereves/view/34366
• jvninfos/view/57335

Session

• 0(null)

Request

Cake Params

• plugin(null)
• controllerjvninfos
• actionindex
• named(array)
  • page1009
  • sorttitle
  • directiondesc
• pass(empty)
• paging(array)
  • Jvninfo(array)
    • page1009
    • current5
    • count68839
    • prevPage(true)
    • nextPage(true)
    • pageCount13768
    • order(array)
      • Jvninfo.titledesc
    • limit5
    • options(array)
      • page1009
      • order(array)
        • Jvninfo.titledesc
      • sorttitle
      • directiondesc
      • conditions(empty)
    • paramTypenamed

Post data

No post data.

Query string

No querystring data.

Cookie

To view Cookies, add CookieComponent to Controller

Current Route

• keys(array)
  • 0controller
  • 1action
• options(array)
  • defaultRoute(true)
• defaults(array)
  • plugin(null)
• template/:controller/:action/*

Sql Logs

Logs

View Variables

• jvninfos(array)
  • 0(array)
    • Jvninfo(array)
      • id52069
      • nameJVNDB-2007-000732
      • titleXen の pygrub ユーティリティにおける権限昇格の脆弱性
      • summaryXen の pygrub (tools/pygrub/src/GrubConf.py) はゲストドメインをブートしている際、exec() 関数を使用した grub.conf ファイルの取扱に不備があり、ドメイン 0 で任意のコマンドを実行される、権限昇格の脆弱性が存在します。
      • cveinfo_nameCVE-2007-4993
      • cveinfo_id28348
      • nvdinfo_nameCVE-2007-4993
      • nvdinfo_id57082
      • cvssv26.9
      • cvssv3(null)
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000732.html
      • published_date2007-09-27
      • registered_date2007-10-12
      • last_updated_date2008-10-29
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id28348
      • nameCVE-2007-4991
      • statusCandidate
      • descriptionThe SOCKS4 Proxy in Microsoft Internet Security and Acceleration (ISA) Server 2004 SP1 and SP2 allows remote attackers to obtain potentially sensitive information (the destination IP address of another user"s session) via an empty packet.
      • phaseAssigned (20070920)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id57082
      • nameCVE-2007-4993
      • descriptionpygrub (tools/pygrub/src/GrubConf.py) in Xen 3.0.3, when booting a guest domain, allows local users with elevated privileges in the guest domain to execute arbitrary commands in domain 0 via a crafted grub.conf file whose contents are used in exec statements.
      • reject(null)
      • CVSS_version2
      • CVSS_score6.9
      • severityMedium
      • CVSS_base_score6.9
      • CVSS_impact_subscore10
      • CVSS_exploit_subscore3.4
      • nvd_xml_version(null)
      • CVSS_vector(AV:L/AC:M/Au:N/C:C/I:C/A:C)
      • sourcecve
      • pub_date2017-01-07
      • published2007-09-27
      • modified_date2011-03-07
      • typeCVE
      • seq2007-4993
      • deleted(null)
      • created(null)
      • modified(null)
  • 1(array)
    • Jvninfo(array)
      • id29464
      • nameJVNDB-2012-005171
      • titleXen の PyGrub ブートローダにおけるサービス運用妨害 (DoS) の脆弱性
      • summaryXen の PyGrub ブートローダには、サービス運用妨害 (メモリ消費) 状態となる脆弱性が存在します。
      • cveinfo_nameCVE-2012-2625
      • cveinfo_id55863
      • nvdinfo_nameCVE-2012-2625
      • nvdinfo_id44350
      • cvssv22.7
      • cvssv3(null)
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005171.html
      • published_date2012-07-04
      • registered_date2012-11-02
      • last_updated_date2012-12-07
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id55863
      • nameCVE-2012-2620
      • statusCandidate
      • description** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
      • phaseAssigned (20120510)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id44350
      • nameCVE-2012-2625
      • descriptionThe PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, 4.2.x, and 4.1.x allows local para-virtualized guest users to cause a denial of service (memory consumption) via a large (1) bzip2 or (2) lzma compressed kernel image.
      • reject(null)
      • CVSS_version2
      • CVSS_score2.7
      • severityLow
      • CVSS_base_score2.7
      • CVSS_impact_subscore2.9
      • CVSS_exploit_subscore5.1
      • nvd_xml_version(null)
      • CVSS_vector(AV:A/AC:L/Au:S/C:N/I:N/A:P)
      • sourcecve
      • pub_date2017-01-19
      • published2012-10-31
      • modified_date2014-05-05
      • typeCVE
      • seq2012-2625
      • deleted(null)
      • created(null)
      • modified(null)
  • 2(array)
    • Jvninfo(array)
      • id41195
      • nameJVNDB-2009-002202
      • titleXen の pyGrub ブートローダにおけるゲストの Kernel ブートパラメータを改ざん可能な脆弱性
      • summaryXen の pyGrub ブートローダには、grub.conf の password オプションをサポートしていないため、パスワード認証なしにゲストの Kernel ブートパラメータを改ざん可能な脆弱性が存在します。
      • cveinfo_nameCVE-2009-3525
      • cveinfo_id40956
      • nvdinfo_nameCVE-2009-3525
      • nvdinfo_id50726
      • cvssv27.2
      • cvssv3(null)
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002202.html
      • published_date2009-10-01
      • registered_date2009-11-11
      • last_updated_date2009-11-11
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id40956
      • nameCVE-2009-3521
      • statusCandidate
      • descriptionMultiple cross-site scripting (XSS) vulnerabilities in the Visualization Engine (VE) in IBM Tivoli Composite Application Manager for WebSphere (ITCAM) 6.1.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
      • phaseAssigned (20091001)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id50726
      • nameCVE-2009-3525
      • descriptionThe pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest"s kernel boot parameters without providing the expected password.
      • reject(null)
      • CVSS_version2
      • CVSS_score7.2
      • severityHigh
      • CVSS_base_score7.2
      • CVSS_impact_subscore10
      • CVSS_exploit_subscore3.9
      • nvd_xml_version(null)
      • CVSS_vector(AV:L/AC:L/Au:N/C:C/I:C/A:C)
      • sourcecve
      • pub_date2017-01-07
      • published2009-10-05
      • modified_date2010-08-21
      • typeCVE
      • seq2009-3525
      • deleted(null)
      • created(null)
      • modified(null)
  • 3(array)
    • Jvninfo(array)
      • id29465
      • nameJVNDB-2012-005172
      • titleXen の PV ドメインビルダーにおけるサービス運用妨害 (DoS) の脆弱性
      • summaryXen の PV ドメインビルダーは、カーネル、または RAMディスクの (1) 展開前または (2) 展開後のサイズを確認しないため、サービス運用妨害 (ドメイン 0 のメモリ消費) 状態となる脆弱性が存在します。
      • cveinfo_nameCVE-2012-4544
      • cveinfo_id57782
      • nvdinfo_nameCVE-2012-4544
      • nvdinfo_id45920
      • cvssv22.1
      • cvssv3(null)
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005172.html
      • published_date2012-10-31
      • registered_date2012-11-02
      • last_updated_date2012-11-02
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id57782
      • nameCVE-2012-4539
      • statusCandidate
      • descriptionXen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service (infinite loop and hang or crash) via invalid arguments to GNTTABOP_get_status_frames, aka "Grant table hypercall infinite loop DoS vulnerability."
      • phaseAssigned (20120821)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id45920
      • nameCVE-2012-4544
      • descriptionThe PV domain builder in Xen 4.2 and earlier does not validate the size of the kernel or ramdisk (1) before or (2) after decompression, which allows local guest administrators to cause a denial of service (domain 0 memory consumption) via a crafted (a) kernel or (b) ramdisk.
      • reject(null)
      • CVSS_version2
      • CVSS_score2.1
      • severityLow
      • CVSS_base_score2.1
      • CVSS_impact_subscore2.9
      • CVSS_exploit_subscore3.9
      • nvd_xml_version(null)
      • CVSS_vector(AV:L/AC:L/Au:N/C:N/I:N/A:P)
      • sourcecve
      • pub_date2017-01-19
      • published2012-10-31
      • modified_date2014-05-05
      • typeCVE
      • seq2012-4544
      • deleted(null)
      • created(null)
      • modified(null)
  • 4(array)
    • Jvninfo(array)
      • id67452
      • nameJVNDB-2017-003749
      • titleXen の PV ゲストにおける情報漏えいに関する脆弱性
      • summaryXen の PV ゲストには、情報漏えいに関する脆弱性が存在します。
      • cveinfo_nameCVE-2017-7995
      • cveinfo_id0
      • nvdinfo_nameCVE-2017-7995
      • nvdinfo_id85500
      • cvssv21.7
      • cvssv33.8
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-003749.html
      • published_date2017-05-02
      • registered_date2017-06-06
      • last_updated_date2017-06-06
      • deleted0000-00-00 00:00:00
      • created0000-00-00 00:00:00
      • modified2017-06-12 23:56:40
    • Cveinfo(array)
      • id(null)
      • name(null)
      • status(null)
      • description(null)
      • phase(null)
      • votes(null)
      • comments(null)
      • deleted(null)
      • created(null)
      • modified(null)
    • Nvdinfo(array)
      • id85500
      • nameCVE-2017-7995
      • descriptionXen PV guest before Xen 4.3 checked access permissions to MMIO ranges only after accessing them, allowing host PCI device space memory reads, leading to information disclosure. This is an error in the get_user function. NOTE: the upstream Xen Project considers versions before 4.5.x to be EOL.
      • reject
      • CVSS_version2
      • CVSS_score1.7
      • severityLow
      • CVSS_base_score1.7
      • CVSS_impact_subscore2.9
      • CVSS_exploit_subscore3.1
      • nvd_xml_version
      • CVSS_vector(AV:L/AC:L/Au:S/C:P/I:N/A:N)
      • sourcecve
      • pub_date2017-05-27
      • published2017-05-03
      • modified_date2017-05-15
      • typeCVE
      • seq2017-7995
      • deleted0000-00-00 00:00:00
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
• $request->data(empty)
• $this->validationErrors(array)
  • Jvninfo(empty)
  • Cveinfo(empty)
  • Nvdinfo(empty)
• Loaded Helpers(array)
  • 0Number
  • 1SimpleGraph
  • 2Paginator
  • 3DebugTimer
  • 4Toolbar
  • 5Html
  • 6Text
  • 7Form
  • 8Session
  • 9HtmlToolbar

App Constants

No application environment available.

CakePHP Constants

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

PHP Environment

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/jvninfos/index/page:1009/sort:title/direction:desc
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/jvninfos/index/page:1009/sort:title/direction:desc
Remote Port	64486
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.148
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.78.197
Http Via	1.1 squid-proxy-5b5d847c96-v2jzj (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	*/*
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.216.148
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.148
Unique Id	aFVpjLXRbDEWC5HedFHNMgAAA2w
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.216.148
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.148
Redirect Unique Id	aFVpjLXRbDEWC5HedFHNMgAAA2w
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.216.148
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.148
Redirect Redirect Unique Id	aFVpjLXRbDEWC5HedFHNMgAAA2w
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1750428044.5983
Request Time	1750428044

Included Files

Include Paths

• 0/virtual/inogo77/public_html/jvn/lib
• 2/opt/remi/php56/root/usr/share/pear
• 3/opt/remi/php56/root/usr/share/php
• 4/usr/share/pear
• 5/usr/share/php
• 6-> /virtual/inogo77/public_html/jvn/lib/Cake/

Included Files

• core(array)
  • Cache(array)
    • 0CORE/Cache/Cache.php
    • 1CORE/Cache/Engine/FileEngine.php
    • 2CORE/Cache/CacheEngine.php
  • Component(array)
    • 0CORE/Controller/Component/SessionComponent.php
    • 1CORE/Controller/Component/PaginatorComponent.php
  • Config(array)
    • 0CORE/Config/routes.php
    • 1CORE/Config/config.php
  • Controller(array)
    • 0CORE/Controller/Controller.php
    • 1CORE/Controller/ComponentCollection.php
    • 2CORE/Controller/Component.php
  • Datasource(array)
    • 0CORE/Model/Datasource/CakeSession.php
    • 1CORE/Model/Datasource/Database/Mysql.php
    • 2CORE/Model/Datasource/DboSource.php
    • 3CORE/Model/Datasource/DataSource.php
  • Error(array)
    • 0CORE/Error/exceptions.php
    • 1CORE/Error/ErrorHandler.php
  • I18n(array)
    • 0CORE/I18n/I18n.php
    • 1CORE/I18n/L10n.php
  • Log(array)
    • 0CORE/Log/CakeLog.php
    • 1CORE/Log/LogEngineCollection.php
    • 2CORE/Log/Engine/FileLog.php
    • 3CORE/Log/Engine/BaseLog.php
    • 4CORE/Log/CakeLogInterface.php
  • Model(array)
    • 0CORE/Model/Model.php
    • 1CORE/Model/BehaviorCollection.php
    • 2CORE/Model/ConnectionManager.php
  • Network(array)
    • 0CORE/Network/CakeRequest.php
    • 1CORE/Network/CakeResponse.php
  • Other(array)
    • 0CORE/bootstrap.php
    • 1CORE/basics.php
    • 2CORE/Core/App.php
    • 3CORE/Core/Configure.php
    • 4CORE/Core/CakePlugin.php
    • 5CORE/Event/CakeEventListener.php
    • 6CORE/Event/CakeEvent.php
    • 7CORE/Event/CakeEventManager.php
    • 8CORE/Core/Object.php
  • Routing(array)
    • 0CORE/Routing/Dispatcher.php
    • 1CORE/Routing/Filter/AssetDispatcher.php
    • 2CORE/Routing/DispatcherFilter.php
    • 3CORE/Routing/Filter/CacheDispatcher.php
    • 4CORE/Routing/Router.php
    • 5CORE/Routing/Route/CakeRoute.php
    • 6CORE/Routing/Route/PluginShortRoute.php
  • Utility(array)
    • 0CORE/Utility/Hash.php
    • 1CORE/Utility/Inflector.php
    • 2CORE/Utility/ObjectCollection.php
    • 3CORE/Utility/Debugger.php
    • 4CORE/Utility/String.php
    • 5CORE/Utility/ClassRegistry.php
  • View(array)
    • 0CORE/View/HelperCollection.php
• app(array)
  • Component(array)
    • 0APP/Controller/Component/CommonComponent.php
  • Config(array)
    • 0APP/Config/core.php
    • 1APP/Config/bootstrap.php
    • 2APP/Config/routes.php
    • 3APP/Config/database.php
  • Controller(array)
    • 0APP/Controller/JvninfosController.php
    • 1APP/Controller/AppController.php
  • Model(array)
    • 0APP/Model/Jvninfo.php
    • 1APP/Model/AppModel.php
    • 2APP/Model/Cveinfo.php
    • 3APP/Model/Nvdinfo.php
  • Other(array)
    • 0APP/webroot/index.php
• plugins(array)
  • DebugKit(array)
    • Component(array)
      • 0DebugKit/Controller/Component/ToolbarComponent.php
    • Other(array)
      • 0DebugKit/Lib/DebugMemory.php
      • 1DebugKit/Lib/Panel/HistoryPanel.php
      • 2DebugKit/Lib/DebugPanel.php
      • 3DebugKit/Lib/Panel/SessionPanel.php
      • 4DebugKit/Lib/Panel/RequestPanel.php
      • 5DebugKit/Lib/Panel/SqlLogPanel.php
      • 6DebugKit/Lib/Panel/TimerPanel.php
      • 7DebugKit/Lib/Panel/LogPanel.php
      • 8DebugKit/Lib/Panel/VariablesPanel.php
      • 9DebugKit/Lib/Panel/EnvironmentPanel.php
      • 10DebugKit/Lib/Panel/IncludePanel.php
      • 11DebugKit/Lib/DebugTimer.php
    • Log(array)
      • 0DebugKit/Lib/Log/Engine/DebugKitLog.php