5 matches found
CVE-2025-31118
NamelessMC is a free, easy to use & powerful website software for Minecraft servers. In version 2.1.4 and prior, forum quick reply feature viewtopic.php does not implement any spam prevention mechanism. This allows authenticated users to continuously post replies without any time restriction,...
CVE-2025-31118 NamelessMC Has Forum Reply Submission Time Limit Bypass
NamelessMC is a free, easy to use & powerful website software for Minecraft servers. In version 2.1.4 and prior, forum quick reply feature viewtopic.php does not implement any spam prevention mechanism. This allows authenticated users to continuously post replies without any time restriction,...
CVE-2025-31118
CVE-2025-31118 (NamelessMC) affects NamelessMC up to version 2.1.4. The forum quick reply feature (view_topic.php) lacks spam prevention, allowing authenticated users to post replies without time restrictions, causing a surge that can disrupt operations. A fix is available in version 2.2.0. Remed...
CVE-2025-30158 NamelessMC Forum iframe width/height abuse causing UI-based Denial of Service
NamelessMC is a free, easy to use & powerful website software for Minecraft servers. In version 2.1.4 and prior, the forum allows users to post iframe elements inside forum topics/comments/feed with no restriction on the iframe's width and height attributes. This allows an authenticated attacker ...
CVE-2025-30158
CVE-2025-30158 (NamelessMC) affects NamelessMC