How severe is CVE-2025-30357?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.8 out of 10.

What type of vulnerability is CVE-2025-30357?

This is classified as CWE-706, which is a common weakness in software security.

CVE-2025-30357 - MEDIUM Severity | CVSS 6.8

Vulnerability Description

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. In version 2.1.4 and prior, if a malicious user is leaving spam comments on many topics then an administrator, unable to manually remove each spam comment, may delete the malicious account. Once an administrator deletes the malicious user's account, all their posts (comments) along with the associated topics (by unrelated users) will be marked as deleted. This issue has been patched in version 2.2.0.

Related Vulnerabilities

CVE-2022-28198

MEDIUM

CVSS:6.8(Medium)

NVIDIA Omniverse Nucleus and Cache contain a vulnerability in its configuration of OpenSSL, where an attacker with physical access to the system can cause arbitrary code execution which can impact con...

CWE-7062022

CVE-2019-19921

HIGH

CVSS:7.0(High)

runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with...

CWE-7062019

CVE-2023-27561

HIGH

CVSS:7.0(High)

runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with cus...

CWE-7062023

CVE-2021-31920

MEDIUM

CVSS:6.5(Medium)

Istio before 1.8.6 and 1.9.x before 1.9.5 has a remotely exploitable vulnerability where an HTTP request path with multiple slashes or escaped slash characters (%2F or %5C) could potentially bypass an...

CWE-7062021

CVE-2022-30621

MEDIUM

CVSS:6.5(Medium)

Allows a remote user to read files on the camera's OS "GetFileContent.cgi". Reading arbitrary files on the camera's OS as root user.

CWE-7062022

CVE-2019-17575

HIGH

CVSS:7.2(High)

A file-rename filter bypass exists in admin/media/rename.php in WBCE CMS 1.4.0 and earlier. This can be exploited by an authenticated user with admin privileges to rename a media filename and extensio...

CWE-7062019