Request History

4 previous requests available

• Restore to current request
• jvninfos/index/page:13708/sort:cveinfo_id/direction:desc
• nvdreves/view/330635
• cvereves/view/6989
• nvdreves/view/20048

Session

• 0(null)

Request

Cake Params

• plugin(null)
• controllerjvninfos
• actionindex
• named(array)
  • page13672
  • sortcveinfo_id
  • directionasc
  • Jvninfoscveinfos
• pass(empty)
• paging(array)
  • Jvninfo(array)
    • page13672
    • current5
    • count68839
    • prevPage(true)
    • nextPage(true)
    • pageCount13768
    • order(array)
      • Jvninfo.cveinfo_idasc
    • limit5
    • options(array)
      • page13672
      • order(array)
        • Jvninfo.cveinfo_idasc
      • sortcveinfo_id
      • directionasc
      • conditions(empty)
    • paramTypenamed

Post data

No post data.

Query string

No querystring data.

Cookie

To view Cookies, add CookieComponent to Controller

Current Route

• keys(array)
  • 0controller
  • 1action
• options(array)
  • defaultRoute(true)
• defaults(array)
  • plugin(null)
• template/:controller/:action/*

Sql Logs

Logs

View Variables

• jvninfos(array)
  • 0(array)
    • Jvninfo(array)
      • id4827
      • nameJVNDB-2016-005600
      • titleLinux Kernel の drivers/scsi/arcmsr/arcmsr_hba.c の arcmsr_iop_message_xfer 関数における権限を取得される脆弱性
      • summaryLinux Kernel の drivers/scsi/arcmsr/arcmsr_hba.c の arcmsr_iop_message_xfer 関数は、特定の length フィールドを制限しないため、権限を取得される、またはサービス運用妨害 (ヒープベースのバッファオーバーフロー) 状態にされる脆弱性が存在します。
      • cveinfo_nameCVE-2016-7425
      • cveinfo_id93932
      • nvdinfo_nameCVE-2016-7425
      • nvdinfo_id21842
      • cvssv27.2
      • cvssv37.8
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005600.html
      • published_date2016-09-15
      • registered_date2016-10-25
      • last_updated_date2016-10-25
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id93932
      • nameCVE-2016-7112
      • statusCandidate
      • descriptionThe EN100 Ethernet module before 4.29 for Siemens SIPROTEC 4 and SIPROTEC Compact devices allows remote attackers to bypass authentication and obtain administrative access via unspecified HTTP traffic.
      • phaseAssigned (20160830)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id21842
      • nameCVE-2016-7425
      • descriptionThe arcmsr_iop_message_xfer function in drivers/scsi/arcmsr/arcmsr_hba.c in the Linux kernel through 4.8.2 does not restrict a certain length field, which allows local users to gain privileges or cause a denial of service (heap-based buffer overflow) via an ARCMSR_MESSAGE_WRITE_WQBUFFER control code.
      • reject(null)
      • CVSS_version2
      • CVSS_score7.2
      • severityHigh
      • CVSS_base_score7.2
      • CVSS_impact_subscore10
      • CVSS_exploit_subscore3.9
      • nvd_xml_version(null)
      • CVSS_vector(AV:L/AC:L/Au:N/C:C/I:C/A:C)
      • sourcecve
      • pub_date2017-01-19
      • published2016-10-16
      • modified_date2017-01-06
      • typeCVE
      • seq2016-7425
      • deleted(null)
      • created(null)
      • modified(null)
  • 1(array)
    • Jvninfo(array)
      • id4397
      • nameJVNDB-2016-005170
      • titleSAP Netweaver の SCTC サブパッケージの複数の関数における任意のコマンドを実行される脆弱性
      • summarySAP Netweaver の SCTC サブパッケージの (1) SCTC_REFRESH_EXPORT_TAB_COMP、(2) SCTC_REFRESH_CHECK_ENV、および (3) SCTC_TMS_MAINTAIN_ALOG 関数には、任意のコマンドを実行される脆弱性が存在します。
      • cveinfo_nameCVE-2016-7435
      • cveinfo_id93942
      • nvdinfo_nameCVE-2016-7435
      • nvdinfo_id21850
      • cvssv29
      • cvssv39.1
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005170.html
      • published_date2016-03-08
      • registered_date2016-10-13
      • last_updated_date2016-10-13
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id93942
      • nameCVE-2016-7122
      • statusCandidate
      • descriptionThe avi_read_nikon function in libavformat/avidec.c in FFmpeg before 3.1.4 is vulnerable to infinite loop when it decodes an AVI file that has a crafted "nctg" structure.
      • phaseAssigned (20160902)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id21850
      • nameCVE-2016-7435
      • descriptionThe (1) SCTC_REFRESH_EXPORT_TAB_COMP, (2) SCTC_REFRESH_CHECK_ENV, and (3) SCTC_TMS_MAINTAIN_ALOG functions in the SCTC subpackage in SAP Netweaver 7.40 SP 12 allow remote authenticated users with certain permissions to execute arbitrary commands via vectors involving a CALL "SYSTEM" statement, aka SAP Security Note 2260344.
      • reject(null)
      • CVSS_version2
      • CVSS_score9
      • severityHigh
      • CVSS_base_score9
      • CVSS_impact_subscore10
      • CVSS_exploit_subscore8
      • nvd_xml_version(null)
      • CVSS_vector(AV:N/AC:L/Au:S/C:C/I:C/A:C)
      • sourcecve
      • pub_date2017-01-19
      • published2016-10-05
      • modified_date2016-11-28
      • typeCVE
      • seq2016-7435
      • deleted(null)
      • created(null)
      • modified(null)
  • 2(array)
    • Jvninfo(array)
      • id4649
      • nameJVNDB-2016-005422
      • titleSAP Netweaver における RFC 機能のコールバックの実行を拒否したことを隠蔽される脆弱性
      • summarySAP Netweaver は、(1) DUI および (2) DUJ イベントを non-critical として SAP Security Audit Log に不適切にログを作成するため、RFC 機能のコールバックの実行を拒否したことを隠蔽される脆弱性が存在します。
      • cveinfo_nameCVE-2016-7437
      • cveinfo_id93944
      • nvdinfo_nameCVE-2016-7437
      • nvdinfo_id21851
      • cvssv22.1
      • cvssv33.3
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005422.html
      • published_date2016-10-11
      • registered_date2016-10-20
      • last_updated_date2016-10-20
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id93944
      • nameCVE-2016-7124
      • statusCandidate
      • descriptionext/standard/var_unserializer.c in PHP before 5.6.25 and 7.x before 7.0.10 mishandles certain invalid objects, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data that leads to a (1) __destruct call or (2) magic method call.
      • phaseAssigned (20160902)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id21851
      • nameCVE-2016-7437
      • descriptionSAP Netweaver 7.40 improperly logs (1) DUI and (2) DUJ events in the SAP Security Audit Log as non-critical, which might allow local users to hide rejected attempts to execute RFC function callbacks by leveraging filtering of non-critical events in audit analysis reports, aka SAP Security Note 2252312.
      • reject(null)
      • CVSS_version2
      • CVSS_score2.1
      • severityLow
      • CVSS_base_score2.1
      • CVSS_impact_subscore2.9
      • CVSS_exploit_subscore3.9
      • nvd_xml_version(null)
      • CVSS_vector(AV:L/AC:L/Au:N/C:N/I:P/A:N)
      • sourcecve
      • pub_date2017-01-19
      • published2016-10-13
      • modified_date2016-10-13
      • typeCVE
      • seq2016-7437
      • deleted(null)
      • created(null)
      • modified(null)
  • 3(array)
    • Jvninfo(array)
      • id64599
      • nameJVNDB-2016-006374
      • titlewolfSSL の ECC の C ソフトウェアの実装における RSA 鍵を取得される脆弱性
      • summarywolfSSL (旧 CyaSSL) の ECC の C ソフトウェアの実装には、RSA 鍵を取得される脆弱性が存在します。
      • cveinfo_nameCVE-2016-7438
      • cveinfo_id93945
      • nvdinfo_nameCVE-2016-7438
      • nvdinfo_id21852
      • cvssv22.1
      • cvssv35.5
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-006374.html
      • published_date2016-09-26
      • registered_date2016-12-22
      • last_updated_date2016-12-22
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id93945
      • nameCVE-2016-7125
      • statusCandidate
      • descriptionext/session/session.c in PHP before 5.6.25 and 7.x before 7.0.10 skips invalid session names in a way that triggers incorrect parsing, which allows remote attackers to inject arbitrary-type session data by leveraging control of a session name, as demonstrated by object injection.
      • phaseAssigned (20160902)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id21852
      • nameCVE-2016-7438
      • descriptionThe C software implementation of ECC in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences.
      • reject(null)
      • CVSS_version2
      • CVSS_score2.1
      • severityLow
      • CVSS_base_score2.1
      • CVSS_impact_subscore2.9
      • CVSS_exploit_subscore3.9
      • nvd_xml_version(null)
      • CVSS_vector(AV:L/AC:L/Au:N/C:P/I:N/A:N)
      • sourcecve
      • pub_date2017-01-19
      • published2016-12-13
      • modified_date2016-12-23
      • typeCVE
      • seq2016-7438
      • deleted(null)
      • created(null)
      • modified(null)
  • 4(array)
    • Jvninfo(array)
      • id64600
      • nameJVNDB-2016-006375
      • titlewolfSSL の RSA の C ソフトウェアの実装における RSA 鍵を取得される脆弱性
      • summarywolfSSL (旧 CyaSSL) の RSA の C ソフトウェアの実装には、RSA 鍵を取得される脆弱性が存在します。
      • cveinfo_nameCVE-2016-7439
      • cveinfo_id93946
      • nvdinfo_nameCVE-2016-7439
      • nvdinfo_id21853
      • cvssv22.1
      • cvssv35.5
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-006375.html
      • published_date2016-09-26
      • registered_date2016-12-22
      • last_updated_date2016-12-22
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id93946
      • nameCVE-2016-7126
      • statusCandidate
      • descriptionThe imagetruecolortopalette function in ext/gd/gd.c in PHP before 5.6.25 and 7.x before 7.0.10 does not properly validate the number of colors, which allows remote attackers to cause a denial of service (select_colors allocation error and out-of-bounds write) or possibly have unspecified other impact via a large value in the third argument.
      • phaseAssigned (20160902)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id21853
      • nameCVE-2016-7439
      • descriptionThe C software implementation of RSA in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences.
      • reject(null)
      • CVSS_version2
      • CVSS_score2.1
      • severityLow
      • CVSS_base_score2.1
      • CVSS_impact_subscore2.9
      • CVSS_exploit_subscore3.9
      • nvd_xml_version(null)
      • CVSS_vector(AV:L/AC:L/Au:N/C:P/I:N/A:N)
      • sourcecve
      • pub_date2017-01-19
      • published2016-12-13
      • modified_date2016-12-23
      • typeCVE
      • seq2016-7439
      • deleted(null)
      • created(null)
      • modified(null)
• $request->data(empty)
• $this->validationErrors(array)
  • Jvninfo(empty)
  • Cveinfo(empty)
  • Nvdinfo(empty)
• Loaded Helpers(array)
  • 0Number
  • 1SimpleGraph
  • 2Paginator
  • 3DebugTimer
  • 4Toolbar
  • 5Html
  • 6Text
  • 7Form
  • 8Session
  • 9HtmlToolbar

App Constants

No application environment available.

CakePHP Constants

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

PHP Environment

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/jvninfos/index/page:13672/sort:cveinfo_id/direction:asc/Jvninfos:cveinfos
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/jvninfos/index/page:13672/sort:cveinfo_id/direction:asc/Jvninfos:cveinfos
Remote Port	16288
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	3.142.53.191
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	*/*
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	3.142.53.191
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	3.142.53.191
Unique Id	aBIA28dYxSEWW-tnKZLHOgAAAds
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	3.142.53.191
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	3.142.53.191
Redirect Unique Id	aBIA28dYxSEWW-tnKZLHOgAAAds
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	3.142.53.191
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	3.142.53.191
Redirect Redirect Unique Id	aBIA28dYxSEWW-tnKZLHOgAAAds
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1746010331.6878
Request Time	1746010331

Included Files

Include Paths

• 0/virtual/inogo77/public_html/jvn/lib
• 2/opt/remi/php56/root/usr/share/pear
• 3/opt/remi/php56/root/usr/share/php
• 4/usr/share/pear
• 5/usr/share/php
• 6-> /virtual/inogo77/public_html/jvn/lib/Cake/

Included Files

• core(array)
  • Cache(array)
    • 0CORE/Cache/Cache.php
    • 1CORE/Cache/Engine/FileEngine.php
    • 2CORE/Cache/CacheEngine.php
  • Component(array)
    • 0CORE/Controller/Component/SessionComponent.php
    • 1CORE/Controller/Component/PaginatorComponent.php
  • Config(array)
    • 0CORE/Config/routes.php
    • 1CORE/Config/config.php
  • Controller(array)
    • 0CORE/Controller/Controller.php
    • 1CORE/Controller/ComponentCollection.php
    • 2CORE/Controller/Component.php
  • Datasource(array)
    • 0CORE/Model/Datasource/CakeSession.php
    • 1CORE/Model/Datasource/Database/Mysql.php
    • 2CORE/Model/Datasource/DboSource.php
    • 3CORE/Model/Datasource/DataSource.php
  • Error(array)
    • 0CORE/Error/exceptions.php
    • 1CORE/Error/ErrorHandler.php
  • I18n(array)
    • 0CORE/I18n/I18n.php
    • 1CORE/I18n/L10n.php
  • Log(array)
    • 0CORE/Log/CakeLog.php
    • 1CORE/Log/LogEngineCollection.php
    • 2CORE/Log/Engine/FileLog.php
    • 3CORE/Log/Engine/BaseLog.php
    • 4CORE/Log/CakeLogInterface.php
  • Model(array)
    • 0CORE/Model/Model.php
    • 1CORE/Model/BehaviorCollection.php
    • 2CORE/Model/ConnectionManager.php
  • Network(array)
    • 0CORE/Network/CakeRequest.php
    • 1CORE/Network/CakeResponse.php
  • Other(array)
    • 0CORE/bootstrap.php
    • 1CORE/basics.php
    • 2CORE/Core/App.php
    • 3CORE/Core/Configure.php
    • 4CORE/Core/CakePlugin.php
    • 5CORE/Event/CakeEventListener.php
    • 6CORE/Event/CakeEvent.php
    • 7CORE/Event/CakeEventManager.php
    • 8CORE/Core/Object.php
  • Routing(array)
    • 0CORE/Routing/Dispatcher.php
    • 1CORE/Routing/Filter/AssetDispatcher.php
    • 2CORE/Routing/DispatcherFilter.php
    • 3CORE/Routing/Filter/CacheDispatcher.php
    • 4CORE/Routing/Router.php
    • 5CORE/Routing/Route/CakeRoute.php
    • 6CORE/Routing/Route/PluginShortRoute.php
  • Utility(array)
    • 0CORE/Utility/Hash.php
    • 1CORE/Utility/Inflector.php
    • 2CORE/Utility/ObjectCollection.php
    • 3CORE/Utility/Debugger.php
    • 4CORE/Utility/String.php
    • 5CORE/Utility/ClassRegistry.php
  • View(array)
    • 0CORE/View/HelperCollection.php
• app(array)
  • Component(array)
    • 0APP/Controller/Component/CommonComponent.php
  • Config(array)
    • 0APP/Config/core.php
    • 1APP/Config/bootstrap.php
    • 2APP/Config/routes.php
    • 3APP/Config/database.php
  • Controller(array)
    • 0APP/Controller/JvninfosController.php
    • 1APP/Controller/AppController.php
  • Model(array)
    • 0APP/Model/Jvninfo.php
    • 1APP/Model/AppModel.php
    • 2APP/Model/Cveinfo.php
    • 3APP/Model/Nvdinfo.php
  • Other(array)
    • 0APP/webroot/index.php
• plugins(array)
  • DebugKit(array)
    • Component(array)
      • 0DebugKit/Controller/Component/ToolbarComponent.php
    • Other(array)
      • 0DebugKit/Lib/DebugMemory.php
      • 1DebugKit/Lib/Panel/HistoryPanel.php
      • 2DebugKit/Lib/DebugPanel.php
      • 3DebugKit/Lib/Panel/SessionPanel.php
      • 4DebugKit/Lib/Panel/RequestPanel.php
      • 5DebugKit/Lib/Panel/SqlLogPanel.php
      • 6DebugKit/Lib/Panel/TimerPanel.php
      • 7DebugKit/Lib/Panel/LogPanel.php
      • 8DebugKit/Lib/Panel/VariablesPanel.php
      • 9DebugKit/Lib/Panel/EnvironmentPanel.php
      • 10DebugKit/Lib/Panel/IncludePanel.php
      • 11DebugKit/Lib/DebugTimer.php
    • Log(array)
      • 0DebugKit/Lib/Log/Engine/DebugKitLog.php