Browse all 12 CVE security advisories affecting ScriptAndTools. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ScriptAndTools is a software development platform primarily used for creating and managing custom scripts and automation tools. Historically, it has been associated with multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its 12 recorded CVEs. The platform's security characteristics include frequent input validation weaknesses and insufficient access controls in its scripting engine. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests ongoing challenges in secure coding practices, particularly around user-supplied code execution and session management.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-4067 | ScriptAndTools Online-Travling-System viewpackage.php access control — Online-Travling-SystemCWE-284 | 5.3 | Medium | 2025-04-29 |
| CVE-2025-4066 | ScriptAndTools Online-Travling-System addpackage.php access control — Online-Travling-SystemCWE-284 | 7.3 | High | 2025-04-29 |
| CVE-2025-4065 | ScriptAndTools Online-Travling-System addadvertisement.php access control — Online-Travling-SystemCWE-284 | 7.3 | High | 2025-04-29 |
| CVE-2025-4064 | ScriptAndTools Online-Travling-System viewenquiry.php access control — Online-Travling-SystemCWE-284 | 5.3 | Medium | 2025-04-29 |
This page lists every published CVE security advisory associated with ScriptAndTools. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.