Request History

4 previous requests available

• Restore to current request
• cvereves/view/746966
• nvdinfos/view/27988
• nvdinfos/view/49399
• cvereves/view/272515

Session

• 0(null)

Request

Cake Params

• plugin(null)
• controllerjvninfos
• actionindex
• named(array)
  • page1543
  • sortpublished_date
  • directiondesc
• pass(empty)
• paging(array)
  • Jvninfo(array)
    • page1543
    • current5
    • count68839
    • prevPage(true)
    • nextPage(true)
    • pageCount13768
    • order(array)
      • Jvninfo.published_datedesc
    • limit5
    • options(array)
      • page1543
      • order(array)
        • Jvninfo.published_datedesc
      • sortpublished_date
      • directiondesc
      • conditions(empty)
    • paramTypenamed

Post data

No post data.

Query string

No querystring data.

Cookie

To view Cookies, add CookieComponent to Controller

Current Route

• keys(array)
  • 0controller
  • 1action
• options(array)
  • defaultRoute(true)
• defaults(array)
  • plugin(null)
• template/:controller/:action/*

Sql Logs

Logs

View Variables

• jvninfos(array)
  • 0(array)
    • Jvninfo(array)
      • id2297
      • nameJVNDB-2016-003070
      • titleRed Hat OpenShift Enterprise における Web ブラウザの localStorage の API 資格情報にアクセスされる脆弱性
      • summaryRed Hat OpenShift Enterprise は、特定の Pod の service/proxy または pod/proxy API に匿名のアクセス権が付与されている場合、リクエストの origin を適切に検証しないため、Web ブラウザの localStorage の API 資格情報にアクセスされる脆弱性が存在します。
      • cveinfo_nameCVE-2016-3703
      • cveinfo_id90209
      • nvdinfo_nameCVE-2016-3703
      • nvdinfo_id19473
      • cvssv23.5
      • cvssv35.3
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-003070.html
      • published_date2016-05-19
      • registered_date2016-06-10
      • last_updated_date2016-06-10
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id90209
      • nameCVE-2016-3390
      • statusCandidate
      • descriptionThe scripting engines in Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, as demonstrated by the Chakra JavaScript engine, aka "Scripting Engine Memory Corruption Vulnerability."
      • phaseAssigned (20160315)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id19473
      • nameCVE-2016-3703
      • descriptionRed Hat OpenShift Enterprise 3.2 and 3.1 do not properly validate the origin of a request when anonymous access is granted to a service/proxy or pod/proxy API for a specific pod, which allows remote attackers to access API credentials in the web browser localStorage via an access_token in the query parameter.
      • reject(null)
      • CVSS_version2
      • CVSS_score3.5
      • severityLow
      • CVSS_base_score3.5
      • CVSS_impact_subscore2.9
      • CVSS_exploit_subscore6.8
      • nvd_xml_version(null)
      • CVSS_vector(AV:N/AC:M/Au:S/C:P/I:N/A:N)
      • sourcecve
      • pub_date2017-01-19
      • published2016-06-08
      • modified_date2016-06-09
      • typeCVE
      • seq2016-3703
      • deleted(null)
      • created(null)
      • modified(null)
  • 1(array)
    • Jvninfo(array)
      • id2298
      • nameJVNDB-2016-003071
      • titleRed Hat OpenShift Enterprise における制限された Pod 上のネットワークリソースにアクセスされる脆弱性
      • summaryRed Hat OpenShift Enterprise には、マルチテナントの SDN が有効であり、かつ他の名前空間の Pod から通常隔離されている名前空間でビルドが実行されている場合、制限された Pod 上のネットワークリソースにアクセスされる脆弱性が存在します。
      • cveinfo_nameCVE-2016-3708
      • cveinfo_id90214
      • nvdinfo_nameCVE-2016-3708
      • nvdinfo_id19477
      • cvssv25.5
      • cvssv37.1
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-003071.html
      • published_date2016-05-19
      • registered_date2016-06-10
      • last_updated_date2016-06-10
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id90214
      • nameCVE-2016-3395
      • statusCandidate
      • description** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
      • phaseAssigned (20160315)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id19477
      • nameCVE-2016-3708
      • descriptionRed Hat OpenShift Enterprise 3.2, when multi-tenant SDN is enabled and a build is run in a namespace that would normally be isolated from pods in other namespaces, allows remote authenticated users to access network resources on restricted pods via an s2i build with a builder image that (1) contains ONBUILD commands or (2) does not contain a tar binary.
      • reject(null)
      • CVSS_version2
      • CVSS_score5.5
      • severityMedium
      • CVSS_base_score5.5
      • CVSS_impact_subscore4.9
      • CVSS_exploit_subscore8
      • nvd_xml_version(null)
      • CVSS_vector(AV:N/AC:L/Au:S/C:P/I:P/A:N)
      • sourcecve
      • pub_date2017-01-19
      • published2016-06-08
      • modified_date2016-06-09
      • typeCVE
      • seq2016-3708
      • deleted(null)
      • created(null)
      • modified(null)
  • 2(array)
    • Jvninfo(array)
      • id2300
      • nameJVNDB-2016-003073
      • titleRed Hat OpenShift Enterprise における Docker ソケットに接続される脆弱性
      • summaryRed Hat OpenShift Enterprise は、STI ビルドへのアクセスを適切に制限しないため、Docker ソケットに接続され、権限を取得される脆弱性が存在します。
      • cveinfo_nameCVE-2016-3738
      • cveinfo_id90244
      • nvdinfo_nameCVE-2016-3738
      • nvdinfo_id19498
      • cvssv26.5
      • cvssv38.8
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-003073.html
      • published_date2016-05-19
      • registered_date2016-06-10
      • last_updated_date2016-06-10
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id90244
      • nameCVE-2016-3425
      • statusCandidate
      • descriptionUnspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect availability via vectors related to JAXP.
      • phaseAssigned (20160317)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id19498
      • nameCVE-2016-3738
      • descriptionRed Hat OpenShift Enterprise 3.2 does not properly restrict access to STI builds, which allows remote authenticated users to access the Docker socket and gain privileges via vectors related to build-pod.
      • reject(null)
      • CVSS_version2
      • CVSS_score6.5
      • severityMedium
      • CVSS_base_score6.5
      • CVSS_impact_subscore6.4
      • CVSS_exploit_subscore8
      • nvd_xml_version(null)
      • CVSS_vector(AV:N/AC:L/Au:S/C:P/I:P/A:P)
      • sourcecve
      • pub_date2017-01-19
      • published2016-06-08
      • modified_date2016-06-09
      • typeCVE
      • seq2016-3738
      • deleted(null)
      • created(null)
      • modified(null)
  • 3(array)
    • Jvninfo(array)
      • id2564
      • nameJVNDB-2016-003337
      • titleLinux Kernel の arch/x86/kvm/vmx.c におけるホスト OS 上で直接 APIC の MSR アクセス権を取得される脆弱性
      • summaryLinux Kernel の arch/x86/kvm/vmx.c は、APICv の on/off 状態を誤って処理するため、ホスト OS 上で直接 APIC の MSR アクセス権を取得され、その結果、ホスト OS 上でサービス運用妨害 (ホスト OS クラッシュ) 状態にされる、または任意のコードを実行される脆弱性が存在します。
      • cveinfo_nameCVE-2016-4440
      • cveinfo_id90946
      • nvdinfo_nameCVE-2016-4440
      • nvdinfo_id20094
      • cvssv27.2
      • cvssv37.8
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-003337.html
      • published_date2016-05-18
      • registered_date2016-06-28
      • last_updated_date2016-06-28
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id90946
      • nameCVE-2016-4127
      • statusCandidate
      • descriptionUnspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.
      • phaseAssigned (20160427)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id20094
      • nameCVE-2016-4440
      • descriptionarch/x86/kvm/vmx.c in the Linux kernel through 4.6.3 mishandles the APICv on/off state, which allows guest OS users to obtain direct APIC MSR access on the host OS, and consequently cause a denial of service (host OS crash) or possibly execute arbitrary code on the host OS, via x2APIC mode.
      • reject(null)
      • CVSS_version2
      • CVSS_score7.2
      • severityHigh
      • CVSS_base_score7.2
      • CVSS_impact_subscore10
      • CVSS_exploit_subscore3.9
      • nvd_xml_version(null)
      • CVSS_vector(AV:L/AC:L/Au:N/C:C/I:C/A:C)
      • sourcecve
      • pub_date2017-01-19
      • published2016-06-27
      • modified_date2016-06-27
      • typeCVE
      • seq2016-4440
      • deleted(null)
      • created(null)
      • modified(null)
  • 4(array)
    • Jvninfo(array)
      • id3608
      • nameJVNDB-2016-004381
      • titleLinux Kernel のファイルシステムレイヤにおけるサービス運用妨害 (DoS) の脆弱性
      • summaryLinux Kernel のファイルシステムレイヤは、OverlayFS ファイルが自己のハードリンク (self-hardlink) にリネームされた後、リネーム後の操作 (post-rename operations) を続行するため、サービス運用妨害 (システムクラッシュ) 状態にされる脆弱性が存在します。
      • cveinfo_nameCVE-2016-6198
      • cveinfo_id92705
      • nvdinfo_nameCVE-2016-6198
      • nvdinfo_id21069
      • cvssv24.9
      • cvssv35.5
      • jvnurlhttp://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-004381.html
      • published_date2016-05-18
      • registered_date2016-08-18
      • last_updated_date2016-11-16
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified(null)
    • Cveinfo(array)
      • id92705
      • nameCVE-2016-5885
      • statusCandidate
      • description** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
      • phaseAssigned (20160629)
      • votesNone (candidate not yet proposed)
      • comments(null)
      • deleted(null)
      • created0000-00-00 00:00:00
      • modified0000-00-00 00:00:00
    • Nvdinfo(array)
      • id21069
      • nameCVE-2016-6198
      • descriptionThe filesystem layer in the Linux kernel before 4.5.5 proceeds with post-rename operations after an OverlayFS file is renamed to a self-hardlink, which allows local users to cause a denial of service (system crash) via a rename system call, related to fs/namei.c and fs/open.c.
      • reject(null)
      • CVSS_version2
      • CVSS_score4.9
      • severityMedium
      • CVSS_base_score4.9
      • CVSS_impact_subscore6.9
      • CVSS_exploit_subscore3.9
      • nvd_xml_version(null)
      • CVSS_vector(AV:L/AC:L/Au:N/C:N/I:N/A:C)
      • sourcecve
      • pub_date2017-01-19
      • published2016-08-06
      • modified_date2016-11-28
      • typeCVE
      • seq2016-6198
      • deleted(null)
      • created(null)
      • modified(null)
• $request->data(empty)
• $this->validationErrors(array)
  • Jvninfo(empty)
  • Cveinfo(empty)
  • Nvdinfo(empty)
• Loaded Helpers(array)
  • 0Number
  • 1SimpleGraph
  • 2Paginator
  • 3DebugTimer
  • 4Toolbar
  • 5Html
  • 6Text
  • 7Form
  • 8Session
  • 9HtmlToolbar

App Constants

No application environment available.

CakePHP Constants

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

PHP Environment

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/jvninfos/index/page:1543/sort:published_date/direction:desc
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/jvninfos/index/page:1543/sort:published_date/direction:desc
Remote Port	20136
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.217.2
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.5.50
Http Via	1.1 squid-proxy-5b5d847c96-xkbxz (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	*/*
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.217.2
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.217.2
Unique Id	aGwTqcAOzpH-UCEvvBW60gAAAWI
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.217.2
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.217.2
Redirect Unique Id	aGwTqcAOzpH-UCEvvBW60gAAAWI
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.217.2
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.217.2
Redirect Redirect Unique Id	aGwTqcAOzpH-UCEvvBW60gAAAWI
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1751913385.0031
Request Time	1751913385

Included Files

Include Paths

• 0/virtual/inogo77/public_html/jvn/lib
• 2/opt/remi/php56/root/usr/share/pear
• 3/opt/remi/php56/root/usr/share/php
• 4/usr/share/pear
• 5/usr/share/php
• 6-> /virtual/inogo77/public_html/jvn/lib/Cake/

Included Files

• core(array)
  • Cache(array)
    • 0CORE/Cache/Cache.php
    • 1CORE/Cache/Engine/FileEngine.php
    • 2CORE/Cache/CacheEngine.php
  • Component(array)
    • 0CORE/Controller/Component/SessionComponent.php
    • 1CORE/Controller/Component/PaginatorComponent.php
  • Config(array)
    • 0CORE/Config/routes.php
    • 1CORE/Config/config.php
  • Controller(array)
    • 0CORE/Controller/Controller.php
    • 1CORE/Controller/ComponentCollection.php
    • 2CORE/Controller/Component.php
  • Datasource(array)
    • 0CORE/Model/Datasource/CakeSession.php
    • 1CORE/Model/Datasource/Database/Mysql.php
    • 2CORE/Model/Datasource/DboSource.php
    • 3CORE/Model/Datasource/DataSource.php
  • Error(array)
    • 0CORE/Error/exceptions.php
    • 1CORE/Error/ErrorHandler.php
  • I18n(array)
    • 0CORE/I18n/I18n.php
    • 1CORE/I18n/L10n.php
  • Log(array)
    • 0CORE/Log/CakeLog.php
    • 1CORE/Log/LogEngineCollection.php
    • 2CORE/Log/Engine/FileLog.php
    • 3CORE/Log/Engine/BaseLog.php
    • 4CORE/Log/CakeLogInterface.php
  • Model(array)
    • 0CORE/Model/Model.php
    • 1CORE/Model/BehaviorCollection.php
    • 2CORE/Model/ConnectionManager.php
  • Network(array)
    • 0CORE/Network/CakeRequest.php
    • 1CORE/Network/CakeResponse.php
  • Other(array)
    • 0CORE/bootstrap.php
    • 1CORE/basics.php
    • 2CORE/Core/App.php
    • 3CORE/Core/Configure.php
    • 4CORE/Core/CakePlugin.php
    • 5CORE/Event/CakeEventListener.php
    • 6CORE/Event/CakeEvent.php
    • 7CORE/Event/CakeEventManager.php
    • 8CORE/Core/Object.php
  • Routing(array)
    • 0CORE/Routing/Dispatcher.php
    • 1CORE/Routing/Filter/AssetDispatcher.php
    • 2CORE/Routing/DispatcherFilter.php
    • 3CORE/Routing/Filter/CacheDispatcher.php
    • 4CORE/Routing/Router.php
    • 5CORE/Routing/Route/CakeRoute.php
    • 6CORE/Routing/Route/PluginShortRoute.php
  • Utility(array)
    • 0CORE/Utility/Hash.php
    • 1CORE/Utility/Inflector.php
    • 2CORE/Utility/ObjectCollection.php
    • 3CORE/Utility/Debugger.php
    • 4CORE/Utility/String.php
    • 5CORE/Utility/ClassRegistry.php
  • View(array)
    • 0CORE/View/HelperCollection.php
• app(array)
  • Component(array)
    • 0APP/Controller/Component/CommonComponent.php
  • Config(array)
    • 0APP/Config/core.php
    • 1APP/Config/bootstrap.php
    • 2APP/Config/routes.php
    • 3APP/Config/database.php
  • Controller(array)
    • 0APP/Controller/JvninfosController.php
    • 1APP/Controller/AppController.php
  • Model(array)
    • 0APP/Model/Jvninfo.php
    • 1APP/Model/AppModel.php
    • 2APP/Model/Cveinfo.php
    • 3APP/Model/Nvdinfo.php
  • Other(array)
    • 0APP/webroot/index.php
• plugins(array)
  • DebugKit(array)
    • Component(array)
      • 0DebugKit/Controller/Component/ToolbarComponent.php
    • Other(array)
      • 0DebugKit/Lib/DebugMemory.php
      • 1DebugKit/Lib/Panel/HistoryPanel.php
      • 2DebugKit/Lib/DebugPanel.php
      • 3DebugKit/Lib/Panel/SessionPanel.php
      • 4DebugKit/Lib/Panel/RequestPanel.php
      • 5DebugKit/Lib/Panel/SqlLogPanel.php
      • 6DebugKit/Lib/Panel/TimerPanel.php
      • 7DebugKit/Lib/Panel/LogPanel.php
      • 8DebugKit/Lib/Panel/VariablesPanel.php
      • 9DebugKit/Lib/Panel/EnvironmentPanel.php
      • 10DebugKit/Lib/Panel/IncludePanel.php
      • 11DebugKit/Lib/DebugTimer.php
    • Log(array)
      • 0DebugKit/Lib/Log/Engine/DebugKitLog.php