Every CVE whose affected-product data names Simon Brown Pebble, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2012-4022 — CVSS 6.4 (medium): Pebble before 2.6.4 allows remote attackers to trigger loss of blog-entry viewability via a crafted comment.
CVE-2012-5170 — CVSS 5.8 (medium): Open redirect vulnerability in Pebble before 2.6.4 allows remote attackers to redirect users to arbitrary web sites and conduct phishing…
CVE-2006-5168 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the search functionality in Simon Brown Pebble 2.0.0 RC1 and RC2 allows remote attackers to…
CVE-2009-0736 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Pebble before 2.3.2 allows remote attackers to inject arbitrary web script or HTML via…
CVE-2012-4023 — CVSS 4.3 (medium): CRLF injection vulnerability in Pebble before 2.6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response…