CVE-2025-30158 in Namelessinformação

Sumário

de MITRE • 18/04/2025

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. In version 2.1.4 and prior, the forum allows users to post iframe elements inside forum topics/comments/feed with no restriction on the iframe's width and height attributes. This allows an authenticated attacker to perform a UI-based denial of service (DoS) by injecting oversized iframes that block the forum UI and disrupt normal user interactions. This issue has been patched in version 2.2.0.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsável

GitHub M

Reservar

17/03/2025

Divulgação

18/04/2025

Moderação

aceite

Entrada

VDB-305677

CPE

pronto

EPSS

0.00477

KEV

não

Atividades

muito baixo

Fontes

Do you know our Splunk app?

Download it now for free!