JVN/CVE Demo: Jvninfos

JVN List

Name	Title	Summary	Cveinfo	Cvssv2	Jvnurl	Published Date	Last Updated Date	Actions
JVNDB-2016-001893	Apple OS X のメッセージのコンテンツセキュリティポリシーの実装における重要な情報を取得される脆弱性	Apple OS X のメッセージのコンテンツセキュリティポリシー (CSP) の実装には、重要な情報を取得される脆弱性が存在します。	CVE-2016-1764	4.3	http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-001893.html	2016-03-21	2016-03-28	View
JVNDB-2016-002839	Apple OS X のメッセージコンポーネントにおける連絡先リストを変更される脆弱性	Apple OS X のメッセージコンポーネントは、名簿 (roster) の変更を誤って処理するため、連絡先リストを変更される脆弱性が存在します。	CVE-2016-1844	5	http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002839.html	2016-05-16	2016-05-23	View
JVNDB-2016-002838	Apple OS X のメッセージコンポーネントにおける重要な情報を取得される脆弱性	Apple OS X のメッセージコンポーネントは、ファイル名のエンコーディングを誤って処理するため、重要な情報を取得される脆弱性が存在します。	CVE-2016-1843	5	http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002838.html	2016-05-16	2016-05-23	View
JVNDB-2015-005147	Apple OS X のメモアプリケーションにおけるクロスサイトスクリプティングの脆弱性	Apple OS X のメモアプリケーションには、クロスサイトスクリプティングの脆弱性が存在します。	CVE-2015-5875	2.1	http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005147.html	2015-09-30	2015-10-13	View
JVNDB-2015-005149	Apple OS X のメモアプリケーションにおける重要な情報を取得される脆弱性	Apple OS X のメモアプリケーションは、リンクを誤って解析するため、重要な情報を取得される脆弱性が存在します。	CVE-2015-5878	2.1	http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005149.html	2015-09-30	2015-10-13	View

Page 1531 of 13768, showing 5 records out of 68839 total, starting on record 7651, ending on 7655

<<first <prev 1527 | 1528 | 1529 | 1530 | 1531 | 1532 | 1533 | 1534 | 1535 next> last>>

Actions

List NVD

History
+
Request History
4 previous requests available
====
Session
+
Session
- 0(null)
====
Request
+
Request

Cake Params
- plugin(null)
- controllerjvninfos
- actionindex
- named(array)
  page1531
  sorttitle
  directionasc
- pass(empty)
- paging(array)
  Jvninfo(array)
  page1531
  current5
  count68839
  prevPage(true)
  nextPage(true)
  pageCount13768
  order(array)
  Jvninfo.titleasc
  limit5
  options(array)
  page1531
  order(array)
  Jvninfo.titleasc
  sorttitle
  directionasc
  conditions(empty)
  paramTypenamed
Post data

No post data.

Query string

No querystring data.

Cookie

To view Cookies, add CookieComponent to Controller

Current Route
- keys(array)
  0controller
  1action
- options(array)
  defaultRoute(true)
- defaults(array)
  plugin(null)
- template/:controller/:action/*
====
Sql Log
+

Sql Logs

default
No query logs.

====

Timer

+

Memory

Peak Memory Use 3.94 MB

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.29 MB
View render complete	2.79 MB

Timers

Total Request Time: 197 (ms)

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	3.33
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	178.10
Event: Controller.beforeRender	4.12
» Processing toolbar data	4.04
Rendering View	6.37
» Event: View.beforeRender	0.03
» Rendering APP/View/Jvninfos/index.ctp	5.49
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.48
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.07
Event: View.afterLayout	0.00

====

Log
+

Logs

There were no log entries made this request

====
Variables
+
View Variables
- jvninfos(array)
  0(array)
  Jvninfo(array)
  id1120
  nameJVNDB-2016-001893
  titleApple OS X のメッセージのコンテンツセキュリティポリシーの実装における重要な情報を取得される脆弱性
  summaryApple OS X のメッセージのコンテンツセキュリティポリシー (CSP) の実装には、重要な情報を取得される脆弱性が存在します。
  cveinfo_nameCVE-2016-1764
  cveinfo_id88270
  nvdinfo_nameCVE-2016-1764
  nvdinfo_id18112
  cvssv24.3
  cvssv3(null)
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-001893.html
  published_date2016-03-21
  registered_date2016-03-28
  last_updated_date2016-03-28
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id88270
  nameCVE-2016-1451
  statusCandidate
  descriptionCross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Meeting Server (formerly Acano Conferencing Server) 1.7 through 1.9 allows remote attackers to inject arbitrary web script or HTML via crafted parameters, aka Bug ID CSCva19922.
  phaseAssigned (20160104)
  votesNone (candidate not yet proposed)
  comments(null)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id18112
  nameCVE-2016-1764
  descriptionThe Content Security Policy (CSP) implementation in Messages in Apple OS X before 10.11.4 allows remote attackers to obtain sensitive information via a javascript: URL.
  reject(null)
  CVSS_version2
  CVSS_score4.3
  severityMedium
  CVSS_base_score4.3
  CVSS_impact_subscore2.9
  CVSS_exploit_subscore8.6
  nvd_xml_version(null)
  CVSS_vector(AV:N/AC:M/Au:N/C:P/I:N/A:N)
  sourcecve
  pub_date2017-01-19
  published2016-03-23
  modified_date2016-12-02
  typeCVE
  seq2016-1764
  deleted(null)
  created(null)
  modified(null)
  1(array)
  Jvninfo(array)
  id2066
  nameJVNDB-2016-002839
  titleApple OS X のメッセージコンポーネントにおける連絡先リストを変更される脆弱性
  summaryApple OS X のメッセージコンポーネントは、名簿 (roster) の変更を誤って処理するため、連絡先リストを変更される脆弱性が存在します。
  cveinfo_nameCVE-2016-1844
  cveinfo_id88350
  nvdinfo_nameCVE-2016-1844
  nvdinfo_id18192
  cvssv25
  cvssv35.3
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002839.html
  published_date2016-05-16
  registered_date2016-05-23
  last_updated_date2016-05-23
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id88350
  nameCVE-2016-1531
  statusCandidate
  descriptionExim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perl_startup argument.
  phaseAssigned (20160107)
  votesNone (candidate not yet proposed)
  comments(null)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id18192
  nameCVE-2016-1844
  descriptionThe Messages component in Apple OS X before 10.11.5 mishandles roster changes, which allows remote attackers to modify contact lists via unspecified vectors.
  reject(null)
  CVSS_version2
  CVSS_score5
  severityMedium
  CVSS_base_score5
  CVSS_impact_subscore2.9
  CVSS_exploit_subscore10
  nvd_xml_version(null)
  CVSS_vector(AV:N/AC:L/Au:N/C:N/I:P/A:N)
  sourcecve
  pub_date2017-01-19
  published2016-05-20
  modified_date2016-12-01
  typeCVE
  seq2016-1844
  deleted(null)
  created(null)
  modified(null)
  2(array)
  Jvninfo(array)
  id2065
  nameJVNDB-2016-002838
  titleApple OS X のメッセージコンポーネントにおける重要な情報を取得される脆弱性
  summaryApple OS X のメッセージコンポーネントは、ファイル名のエンコーディングを誤って処理するため、重要な情報を取得される脆弱性が存在します。
  cveinfo_nameCVE-2016-1843
  cveinfo_id88349
  nvdinfo_nameCVE-2016-1843
  nvdinfo_id18191
  cvssv25
  cvssv37.5
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002838.html
  published_date2016-05-16
  registered_date2016-05-23
  last_updated_date2016-05-23
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id88349
  nameCVE-2016-1530
  statusCandidate
  description** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
  phaseAssigned (20160107)
  votesNone (candidate not yet proposed)
  comments(null)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id18191
  nameCVE-2016-1843
  descriptionThe Messages component in Apple OS X before 10.11.5 mishandles filename encoding, which allows remote attackers to obtain sensitive information via unspecified vectors.
  reject(null)
  CVSS_version2
  CVSS_score5
  severityMedium
  CVSS_base_score5
  CVSS_impact_subscore2.9
  CVSS_exploit_subscore10
  nvd_xml_version(null)
  CVSS_vector(AV:N/AC:L/Au:N/C:P/I:N/A:N)
  sourcecve
  pub_date2017-01-19
  published2016-05-20
  modified_date2016-12-01
  typeCVE
  seq2016-1843
  deleted(null)
  created(null)
  modified(null)
  3(array)
  Jvninfo(array)
  id9827
  nameJVNDB-2015-005147
  titleApple OS X のメモアプリケーションにおけるクロスサイトスクリプティングの脆弱性
  summaryApple OS X のメモアプリケーションには、クロスサイトスクリプティングの脆弱性が存在します。
  cveinfo_nameCVE-2015-5875
  cveinfo_id83100
  nvdinfo_nameCVE-2015-5875
  nvdinfo_id26938
  cvssv22.1
  cvssv3(null)
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005147.html
  published_date2015-09-30
  registered_date2015-10-13
  last_updated_date2015-10-13
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id83100
  nameCVE-2015-5823
  statusCandidate
  descriptionWebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and APPLE-SA-2015-09-16-3.
  phaseAssigned (20150806)
  votesNone (candidate not yet proposed)
  comments(null)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id26938
  nameCVE-2015-5875
  descriptionCross-site scripting (XSS) vulnerability in Notes in Apple OS X before 10.11 allows local users to inject arbitrary web script or HTML via crafted text.
  reject(null)
  CVSS_version2
  CVSS_score2.1
  severityLow
  CVSS_base_score2.1
  CVSS_impact_subscore2.9
  CVSS_exploit_subscore3.9
  nvd_xml_version(null)
  CVSS_vector(AV:L/AC:L/Au:N/C:N/I:P/A:N)
  sourcecve
  pub_date2017-01-19
  published2015-10-09
  modified_date2016-12-09
  typeCVE
  seq2015-5875
  deleted(null)
  created(null)
  modified(null)
  4(array)
  Jvninfo(array)
  id9829
  nameJVNDB-2015-005149
  titleApple OS X のメモアプリケーションにおける重要な情報を取得される脆弱性
  summaryApple OS X のメモアプリケーションは、リンクを誤って解析するため、重要な情報を取得される脆弱性が存在します。
  cveinfo_nameCVE-2015-5878
  cveinfo_id83103
  nvdinfo_nameCVE-2015-5878
  nvdinfo_id26941
  cvssv22.1
  cvssv3(null)
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005149.html
  published_date2015-09-30
  registered_date2015-10-13
  last_updated_date2015-10-13
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id83103
  nameCVE-2015-5826
  statusCandidate
  descriptionWebKit in Apple iOS before 9 does not properly select the cases in which a Cascading Style Sheets (CSS) document is required to have the text/css content type, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.
  phaseAssigned (20150806)
  votesNone (candidate not yet proposed)
  comments(null)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id26941
  nameCVE-2015-5878
  descriptionNotes in Apple OS X before 10.11 misparses links, which allows local users to obtain sensitive information via unspecified vectors.
  reject(null)
  CVSS_version2
  CVSS_score2.1
  severityLow
  CVSS_base_score2.1
  CVSS_impact_subscore2.9
  CVSS_exploit_subscore3.9
  nvd_xml_version(null)
  CVSS_vector(AV:L/AC:L/Au:N/C:P/I:N/A:N)
  sourcecve
  pub_date2017-01-19
  published2015-10-09
  modified_date2016-12-09
  typeCVE
  seq2015-5878
  deleted(null)
  created(null)
  modified(null)
- $request->data(empty)
- $this->validationErrors(array)
  Jvninfo(empty)
  Cveinfo(empty)
  Nvdinfo(empty)
- Loaded Helpers(array)
  0Number
  1SimpleGraph
  2Paginator
  3DebugTimer
  4Toolbar
  5Html
  6Text
  7Form
  8Session
  9HtmlToolbar
====

+

App Constants

No application environment available.

CakePHP Constants

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

PHP Environment

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/jvninfos/index/page:1531/sort:title/direction:asc
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/jvninfos/index/page:1531/sort:title/direction:asc
Remote Port	62446
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.217.2
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.5.50
Http Via	1.1 squid-proxy-5b5d847c96-xkbxz (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.217.2
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.217.2
Unique Id	aGosVyBiocrpS6gvKehQbAAAAHI
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.217.2
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.217.2
Redirect Unique Id	aGosVyBiocrpS6gvKehQbAAAAHI
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.217.2
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.217.2
Redirect Redirect Unique Id	aGosVyBiocrpS6gvKehQbAAAAHI
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1751788631.0916
Request Time	1751788631

====

Include
+
Included Files

Include Paths
- 0/virtual/inogo77/public_html/jvn/lib
- 2/opt/remi/php56/root/usr/share/pear
- 3/opt/remi/php56/root/usr/share/php
- 4/usr/share/pear
- 5/usr/share/php
- 6-> /virtual/inogo77/public_html/jvn/lib/Cake/
Included Files
- core(array)
  Cache(array)
  0CORE/Cache/Cache.php
  1CORE/Cache/Engine/FileEngine.php
  2CORE/Cache/CacheEngine.php
  Component(array)
  0CORE/Controller/Component/SessionComponent.php
  1CORE/Controller/Component/PaginatorComponent.php
  Config(array)
  0CORE/Config/routes.php
  1CORE/Config/config.php
  Controller(array)
  0CORE/Controller/Controller.php
  1CORE/Controller/ComponentCollection.php
  2CORE/Controller/Component.php
  Datasource(array)
  0CORE/Model/Datasource/CakeSession.php
  1CORE/Model/Datasource/Database/Mysql.php
  2CORE/Model/Datasource/DboSource.php
  3CORE/Model/Datasource/DataSource.php
  Error(array)
  0CORE/Error/exceptions.php
  1CORE/Error/ErrorHandler.php
  I18n(array)
  0CORE/I18n/I18n.php
  1CORE/I18n/L10n.php
  Log(array)
  0CORE/Log/CakeLog.php
  1CORE/Log/LogEngineCollection.php
  2CORE/Log/Engine/FileLog.php
  3CORE/Log/Engine/BaseLog.php
  4CORE/Log/CakeLogInterface.php
  Model(array)
  0CORE/Model/Model.php
  1CORE/Model/BehaviorCollection.php
  2CORE/Model/ConnectionManager.php
  Network(array)
  0CORE/Network/CakeRequest.php
  1CORE/Network/CakeResponse.php
  Other(array)
  0CORE/bootstrap.php
  1CORE/basics.php
  2CORE/Core/App.php
  3CORE/Core/Configure.php
  4CORE/Core/CakePlugin.php
  5CORE/Event/CakeEventListener.php
  6CORE/Event/CakeEvent.php
  7CORE/Event/CakeEventManager.php
  8CORE/Core/Object.php
  Routing(array)
  0CORE/Routing/Dispatcher.php
  1CORE/Routing/Filter/AssetDispatcher.php
  2CORE/Routing/DispatcherFilter.php
  3CORE/Routing/Filter/CacheDispatcher.php
  4CORE/Routing/Router.php
  5CORE/Routing/Route/CakeRoute.php
  6CORE/Routing/Route/PluginShortRoute.php
  Utility(array)
  0CORE/Utility/Hash.php
  1CORE/Utility/Inflector.php
  2CORE/Utility/ObjectCollection.php
  3CORE/Utility/Debugger.php
  4CORE/Utility/String.php
  5CORE/Utility/ClassRegistry.php
  View(array)
  0CORE/View/HelperCollection.php
- app(array)
  Component(array)
  0APP/Controller/Component/CommonComponent.php
  Config(array)
  0APP/Config/core.php
  1APP/Config/bootstrap.php
  2APP/Config/routes.php
  3APP/Config/database.php
  Controller(array)
  0APP/Controller/JvninfosController.php
  1APP/Controller/AppController.php
  Model(array)
  0APP/Model/Jvninfo.php
  1APP/Model/AppModel.php
  2APP/Model/Cveinfo.php
  3APP/Model/Nvdinfo.php
  Other(array)
  0APP/webroot/index.php
- plugins(array)
  DebugKit(array)
  Component(array)
  0DebugKit/Controller/Component/ToolbarComponent.php
  Other(array)
  0DebugKit/Lib/DebugMemory.php
  1DebugKit/Lib/Panel/HistoryPanel.php
  2DebugKit/Lib/DebugPanel.php
  3DebugKit/Lib/Panel/SessionPanel.php
  4DebugKit/Lib/Panel/RequestPanel.php
  5DebugKit/Lib/Panel/SqlLogPanel.php
  6DebugKit/Lib/Panel/TimerPanel.php
  7DebugKit/Lib/Panel/LogPanel.php
  8DebugKit/Lib/Panel/VariablesPanel.php
  9DebugKit/Lib/Panel/EnvironmentPanel.php
  10DebugKit/Lib/Panel/IncludePanel.php
  11DebugKit/Lib/DebugTimer.php
  Log(array)
  0DebugKit/Lib/Log/Engine/DebugKitLog.php
====