namelessmc

Top products

The 15 most recently published vulnerabilities affecting namelessmc.

• CVE-2026-34460NamelessMC: OAuth callback `state` is not validated, allowing login CSRF / session swapping5.4Jun 2, 2026
• CVE-2026-32250NamelessMC has Reflected Cross-Site Scripting (XSS) in id parameter of /index.php?route=/queries/user/4.3Jun 2, 2026
• CVE-2025-54117NamelessMC allows Stored Cross-Site Scripting (XSS) in dashboard text editor9.0Aug 18, 2025
• CVE-2025-54421NamelessMC allows Stored Cross Site Scripting (XSS) in SEO component7.2Aug 18, 2025
• CVE-2025-54118NamelessMC allows sensitive information disclosure in member list component5.3Aug 18, 2025
• CVE-2025-32389NamelessMC Vulnerable to SQL Injections in /user/messaging and /panel/users/reports Pages6.5Apr 18, 2025
• CVE-2025-31120NamelessMC Vulnerable to Cookie-Based View Count Manipulation5.3Apr 18, 2025
• CVE-2025-31118NamelessMC Has Forum Reply Submission Time Limit Bypass7.1Apr 18, 2025
• CVE-2025-30357NamelessMC Forum Topic Deletion Triggered by Unrelated User Deletion7.3Apr 18, 2025
• CVE-2025-30158NamelessMC Forum iframe width/height abuse causing UI-based Denial of Service7.1Apr 18, 2025
• CVE-2025-29784NamelessMC Has Lack of Length Validation for s Parameter in GET Requests7.5Apr 18, 2025
• CVE-2025-22142Cross-site Scripting in NamelessMC5.4Jan 13, 2025
• CVE-2025-22144Account Takeover in NamelessMC9.8Jan 13, 2025
• CVE-2022-2820Session Fixation in namelessmc/nameless7.0Aug 15, 2022
• CVE-2022-2821Missing Critical Step in Authentication in namelessmc/nameless7.5Aug 15, 2022