CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Out the Box Beam me up Scotty beam-me-up-scotty allows Stored XSS.This issue affects Beam me up Scotty: from n/a through = 1.0.23...

5.9CVSS7.2AI score0.00107EPSS

Exploits1References1

GithubExploit•added 2025/04/03 12:38 a.m.•120 views

Exploit for CVE-2025-31864

CVE-2025-31864 1️⃣ Component type WordPress plugin 2️...

5.9CVSS6.1AI score0.00107EPSS

Exploits1

NVD•added 2025/04/01 3:16 p.m.•15 views

CVE-2025-31864

5.9CVSS0.00107EPSS

Exploits1References1

Cvelist•added 2024/09/25 2:5 a.m.•13 views

CVE-2024-8741 Beam me up Scotty – Back to Top Button <= 1.0.21 - Reflected Cross-Site Scripting

The Beam me up Scotty – Back to Top Button plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.0.21. This makes it possible for unauthenticated attackers to inject...

6.1CVSS0.01684EPSS

Exploits0References3

CNNVD•added 2024/09/25 12:0 a.m.•1 views

WordPress plugin Beam me up Scotty 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

6.1CVSS5.8AI score0.01684EPSS

Exploits0References4

Patchstack•added 2024/09/24 1:6 p.m.•1 views

WordPress Beam me up Scotty plugin <= 1.0.21 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Beam me up Scotty versions = 1.0.21...

6.1CVSS6.3AI score0.01684EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/09/24 12:0 a.m.•3 views

PT-2024-39218 · WordPress · Beam Me Up Scotty – Back To Top Button

Name of the Vulnerable Software and Affected Versions: Beam me up Scotty – Back to Top Button plugin for WordPress versions up to, and including, 1.0.21 Description: The issue is related to Reflected Cross-Site Scripting due to the use of add query arg without proper escaping on the URL. This...

6.1CVSS6.8AI score0.01684EPSS

Exploits0References7

Patchstack•added 2024/09/24 12:0 a.m.•7 views

WordPress Beam me up Scotty – Back to Top Button Plugin <= 1.0.21 is vulnerable to Cross Site Scripting (XSS)

Software Beam me up Scotty – Back to Top Button Type Plugin Vulnerable versions = 1.0.21 Fixed in 1.0.22 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8741 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b85fc952fded...

6.1CVSS5.7AI score0.01684EPSS

Exploits0References3Affected Software1

hackapp•added 2016/04/01 9:31 a.m.•22 views

ÖBB Scotty - Exported components, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application ÖBB Scotty published at the 'play' market has multiple vulnerabilities...

0.4AI score

Exploits0References1Affected Software1

seebug.org•added 2014/07/01 12:0 a.m.•25 views

Juergen Schoenwaelder scotty 2.1.x ntping Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2911/info ntping is a component of scotty, a Tcl interpreter used to retrieve status and configuration information for TCP/IP networks. The utility, which runs with root privileges, contains a locally exploitable buffer...

7.1AI score

Exploits0

CVE•added 2002/03/09 5:0 a.m.•46 views

CVE-2001-0764

The CVE-2001-0764 entry describes a buffer overflow in ntping of scotty 2.1.0 that allows local users to execute arbitrary code via a long hostname passed as a command line argument. Concretely, the affected software is scotty 2.1.0 (ntping component); the vulnerability arises from a buffer overf...

7.2CVSS7.5AI score0.0045EPSS

Exploits1References6Affected Software1

Cvelist•added 2002/03/09 5:0 a.m.•17 views

CVE-2001-0764

Buffer overflow in ntping in scotty 2.1.0 allows local users to execute arbitrary code via a long hostname as a command line argument...

7.5AI score0.0045EPSS

Exploits1References6

NVD•added 2001/10/18 4:0 a.m.•7 views

CVE-2001-0764

Buffer overflow in ntping in scotty 2.1.0 allows local users to execute arbitrary code via a long hostname as a command line argument...

7.2CVSS7.5AI score0.0045EPSS

Exploits1References6

Exploit DB•added 2001/06/13 12:0 a.m.•26 views

Juergen Schoenwaelder scotty 2.1.x - ntping Buffer Overflow

// source: https://www.securityfocus.com/bid/2911/info ntping is a component of scotty, a Tcl interpreter used to retrieve status and configuration information for TCP/IP networks. The utility, which runs with root privileges, contains a locally exploitable buffer overflow vulnerability. A local...

7.4AI score

Exploits0