Refine your search
3 vulnerabilities found for Pebble by Pebble
jvndb-2012-000100
Vulnerability from jvndb
Published
2012-11-02 14:23
Modified
2012-11-02 14:23
Summary
Pebble vulnerable to open redirect
Details
Pebble contains an open redirect vulnerability.
Pebble is an open source weblog system. Pebble contains an open redirect vulnerability.
Takahisa Kishiya reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
| Type | URL | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000100.html",
"dc:date": "2012-11-02T14:23+09:00",
"dcterms:issued": "2012-11-02T14:23+09:00",
"dcterms:modified": "2012-11-02T14:23+09:00",
"description": "Pebble contains an open redirect vulnerability.\r\n\r\nPebble is an open source weblog system. Pebble contains an open redirect vulnerability.\r\n\r\nTakahisa Kishiya reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000100.html",
"sec:cpe": {
"#text": "cpe:/a:pebble:pebble",
"@product": "Pebble",
"@vendor": "Pebble",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2012-000100",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN55398821/index.html",
"@id": "JVN#55398821",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5170",
"@id": "CVE-2012-5170",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-5170",
"@id": "CVE-2012-5170",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
}
],
"title": "Pebble vulnerable to open redirect"
}
jvndb-2012-000099
Vulnerability from jvndb
Published
2012-11-02 14:21
Modified
2012-11-02 14:21
Summary
Pebble vulnerable to HTTP header injection
Details
Pebble contains an HTTP header injection vulnerability.
Pebble is an open source weblog system. Pebble contains an HTTP header injection vulnerability.
Takahisa Kishiya reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000099.html",
"dc:date": "2012-11-02T14:21+09:00",
"dcterms:issued": "2012-11-02T14:21+09:00",
"dcterms:modified": "2012-11-02T14:21+09:00",
"description": "Pebble contains an HTTP header injection vulnerability.\r\n\r\nPebble is an open source weblog system. Pebble contains an HTTP header injection vulnerability.\r\n\r\nTakahisa Kishiya reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000099.html",
"sec:cpe": {
"#text": "cpe:/a:pebble:pebble",
"@product": "Pebble",
"@vendor": "Pebble",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2012-000099",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN39563771/index.html",
"@id": "JVN#39563771",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4023",
"@id": "CVE-2012-4023",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4023",
"@id": "CVE-2012-4023",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Pebble vulnerable to HTTP header injection"
}
jvndb-2012-000098
Vulnerability from jvndb
Published
2012-11-02 14:20
Modified
2012-11-02 14:20
Summary
Pebble vulnerability where entries may become unviewable
Details
Pebble contains a vulnerability where blog entries may become unviewable due to a specially crafted comment being posted.
Pebble is an open source weblog system. Pebble contains an issue in the processing of comments that are posted on blog entries, which may lead to a vulnerability where blog entries may become unviewable.
Takahisa Kishiya reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000098.html",
"dc:date": "2012-11-02T14:20+09:00",
"dcterms:issued": "2012-11-02T14:20+09:00",
"dcterms:modified": "2012-11-02T14:20+09:00",
"description": "Pebble contains a vulnerability where blog entries may become unviewable due to a specially crafted comment being posted.\r\n\r\nPebble is an open source weblog system. Pebble contains an issue in the processing of comments that are posted on blog entries, which may lead to a vulnerability where blog entries may become unviewable.\r\n\r\nTakahisa Kishiya reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000098.html",
"sec:cpe": {
"#text": "cpe:/a:pebble:pebble",
"@product": "Pebble",
"@vendor": "Pebble",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2012-000098",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN75492883/index.html",
"@id": "JVN#75492883",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4022",
"@id": "CVE-2012-4022",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4022",
"@id": "CVE-2012-4022",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Pebble vulnerability where entries may become unviewable"
}