Unrated severityNVD Advisory· Published Apr 18, 2025· Updated Apr 18, 2025

NamelessMC Has Forum Reply Submission Time Limit Bypass

CVE-2025-31118

Description

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. In version 2.1.4 and prior, forum quick reply feature (view_topic.php) does not implement any spam prevention mechanism. This allows authenticated users to continuously post replies without any time restriction, resulting in an uncontrolled surge of posts that can disrupt normal operations. This issue has been patched in version 2.2.0.

Affected products

Namelessmc/Namelessv5
Range: < 2.2.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/NamelessMC/Nameless/commit/51e9d93aaa28d40f060b807533d22b768abea207mitrex_refsource_MISC
github.com/NamelessMC/Nameless/releases/tag/v2.2.0mitrex_refsource_MISC
github.com/NamelessMC/Nameless/security/advisories/GHSA-jhvp-mwj4-922mmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000