Lucene search
K
Simon BrownPebble

5 matches found

CVE
CVE
added 2012/11/08 11:0 a.m.51 views

CVE-2012-4022

CVE-2012-4022 affects Pebble prior to 2.6.4. A specially crafted comment can cause arbitrary blog entries to become unviewable due to an issue in comment processing. The impact is loss of blog-entry viewability, with no explicit exploitation details provided in the documents. Remediation recommen...

6.4CVSS6.8AI score0.01511EPSS
CVE
CVE
added 2009/02/25 8:0 p.m.47 views

CVE-2009-0736

Pebble prior to 2.3.2 is affected by a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The condition is a flaw in Pebble’s handling of user-supplied input that leads to script execution in the victim’s browser. ...

4.3CVSS5.8AI score0.01033EPSS
CVE
CVE
added 2006/10/04 4:0 p.m.45 views

CVE-2006-5168

CVE-2006-5168 affects Simon Brown Pebble 2.0.0 RC1 and RC2, specifically the search functionality. The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML through the query string. The provided documents do not include exploitatio...

4.3CVSS6AI score0.01128EPSS
CVE
CVE
added 2012/11/08 11:0 a.m.43 views

CVE-2012-4023

Pebble (open source weblog system) is vulnerable to a CRLF/HTTP header injection in versions prior to 2.6.4. The issue allows remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via unspecified vectors, potentially forging content displayed to the user, executing...

4.3CVSS7.1AI score0.01168EPSS
CVE
CVE
added 2012/11/04 3:0 p.m.36 views

CVE-2012-5170

Pebble (open-source weblog system) is vulnerable to an open redirect in versions prior to 2.6.4. The flaw allows remote attackers to redirect users to arbitrary external websites, enabling phishing attacks via unspecified vectors. Affected product: Pebble; affected versions: before 2.6.4. Root ca...

5.8CVSS6.9AI score0.01305EPSS