CVE-2026-35447— NamelessMC 绕过个人资料限制实现跨写
Possible ATT&CK Techniques 1AI
T1133 · External Remote ServicesAffected Version Matrix 1
| ベンダー | プロダクト | Version Range | ステータス |
|---|---|---|---|
| NamelessMC | Nameless | = 2.2.4 | affected |
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2026-35447の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
NamelessMC: Private or blocking profile pages can be bypassed with direct POST requests, and reply handling allows cross-profile writes
ソース: NVD (National Vulnerability Database)
脆弱性説明
NamelessMC is website software for Minecraft servers. In version 2.2.4, the profile page (modules/Core/pages/profile.php) processes wall post submissions and replies before verifying whether the viewer is authorized to access the profile. This allows any user with the profile.post permission to write wall posts to private or blocking profiles. Additionally, the reply branch does not verify that the target wall post belongs to the current profile, enabling attackers to inject replies into arbitrary wall posts owned by other profiles via a restricted profile URL. This is patched in version 2.2.5.
ソース: NVD (National Vulnerability Database)
CVSS情報
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
通过发送数据的信息暴露
ソース: NVD (National Vulnerability Database)
影響を受ける製品
| ベンダー | プロダクト | 影響を受けるバージョン | CPE | 購読 |
|---|---|---|---|---|
| NamelessMC | Nameless | = 2.2.4 | - |
II. CVE-2026-35447の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2026-35447のインテリジェンス情報
请登录查看更多情报信息。
CVE-2026-35447 厂商安全公告 (1)
Same Patch Batch · NamelessMC · 2026-06-02 · 7 CVEs total
| CVE-2026-34460 | 5.4 MEDIUM | NamelessMC: OAuth callback `state` is not validated, allowing login CSRF / session swappin |
| CVE-2026-32250 | 4.3 MEDIUM | NamelessMC has Reflected Cross-Site Scripting (XSS) in id parameter of /index.php?route=/q |
| CVE-2026-33398 | Authenticated users can read hidden forum posts through `/forum/get_quotes` | |
| CVE-2026-35443 | NamelessMC: Forum reactions bypass the "view own topics only" restriction | |
| CVE-2026-40314 | NamelessMC: Reactions on private or blocking profile posts can be read and modified withou | |
| CVE-2026-40571 | NamelessMC: Reactions on private or blocking profile posts can be modified without proper |
IV. 関連脆弱性
同じ製品: Nameless
- CVE-2026-40571
NamelessMC: Reactions on private or blocking profile posts c - CVE-2026-40314
NamelessMC: Reactions on private or blocking profile posts c - CVE-2026-35443
NamelessMC: Forum reactions bypass the "view own topics only - CVE-2026-34460
NamelessMC: OAuth callback `state` is not validated, allowin - CVE-2026-33398
Authenticated users can read hidden forum posts through `/fo
同じベンダー: NamelessMC
- CVE-2026-40571
NamelessMC: Reactions on private or blocking profile posts c - CVE-2026-40314
NamelessMC: Reactions on private or blocking profile posts c - CVE-2026-35443
NamelessMC: Forum reactions bypass the "view own topics only - CVE-2026-34460
NamelessMC: OAuth callback `state` is not validated, allowin - CVE-2026-33398
Authenticated users can read hidden forum posts through `/fo
同じ弱点: CWE-201
- CVE-2026-44653
LibreChat Shared MCP Server View Leaks Decrypted Admin Secre - CVE-2026-42673
WordPress Activity Logs, User Activity Tracking, Multisite A - CVE-2026-49370
JetBrains YouTrack 安全漏洞 - CVE-2026-10101
Assisted-service: assisted-service: infraenv status leaks re - CVE-2026-45582
n8n-MCP: Workflow telemetry sanitizer could retain partial v
V. CVE-2026-35447へのコメント
まだコメントはありません