CVE-2025-54421

Published
View on NVD ↗
CVSS v3
7.2
HIGH
CVSS v2
N/A
Affected
1
PROJECT

Description

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Cross-site scripting (XSS) vulnerability in NamelessMC before 2.2.4 allows remote authenticated attackers to inject arbitrary web script or HTML via the default_keywords crafted parameter. This vulnerability is fixed in 2.2.4.

NamelessMC/Nameless
NamelessMC/Nameless
NamelessMC is a free, easy to use & powerful website software for your Minecraft server, which includes a large range of features.
GitHubGitHub
651