NamelessMC Sensitive Information Disclosure Vulnerability

A sensitive information disclosure vulnerability has been identified in NamelessMC versions through 2.2.3. This issue allows unauthenticated remote attackers to access sensitive data, such as the absolute path of the source code, by exploiting the member list query parameter. The vulnerability arises because the application does not properly manage error responses, enabling attackers to craft requests that trigger errors revealing confidential server information. This vulnerability can be exploited without authentication.

Impact

Exploitation of this vulnerability leads to the unauthorized disclosure of sensitive information, including server paths, which could facilitate further attacks.

Reproduction

To reproduce this vulnerability, send a GET request to the member list query with an empty list parameter. The server will respond with a 200 OK status, but the content will include an error message disclosing the absolute path of the source code, along with details about the error's origin, such as the file name and line number.

Remediation

Users are advised to update to NamelessMC version 2.2.4 or later, where this vulnerability has been patched.