NamelessMC
Moderate fix1 remedy
cpe:2.3:a:namelessmc:nameless:*:*:*:*:*:*:*
Moderate fix1 remedy
- <= 2.1.4
NamelessMC Forum Quick Reply Spam Vulnerability
Vulnerability
Patched
A vulnerability in NamelessMC's forum quick reply feature in versions through 2.1.4 allows authenticated users to post replies without any time restrictions. This lack of a spam prevention mechanism can lead to a flood of posts, disrupting normal forum operations. The issue has been addressed in version 2.2.0.
Impact
Exploitation of this vulnerability can cause a denial-of-service condition on the forum, flooding threads with spam posts and degrading overall usability. This can overload the database with excessive post data, further disrupting normal forum activities.
Reproduction
To reproduce this vulnerability, log into a NamelessMC forum on a version prior to 2.2.0. Navigate to a topic and use the quick reply feature. Without any cooldown or restriction, post replies continuously. This can be automated with a script that sends repeated reply posts, simulating a spam attack.
Remediation
Users can update to NamelessMC version 2.2.0 or later, where this vulnerability has been patched.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
1.0impact
3.1exploitability
6.8remediation
7.7relevance
0.0threat
6.4urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.