CVE-2023-7332 – PocketMine-MP < 4.18.1 Improper Validation of Dropped Item Count Allows Remote Server Crash

CVE ID : CVE-2023-7332

Published : Dec. 31, 2025, 9:37 p.m. | 47 minutes ago

Description : PocketMine-MP versions prior to 4.18.1 contain an improper input validation vulnerability in inventory transaction handling. A remote attacker with a valid player session can request that the server drop more items than are available in the player’s hotbar, triggering a server crash and resulting in denial of service.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-69412 – KDE Messagelib SSL Validation Bypass

CVE-2025-67711 – Reflected XSS vulnerability in ArcGIS Server.

CVE-2025-67710 – Stored XSS vulnerability in ArcGIS Server

CVE-2025-67709 – There is a cross site scripting issue in ArcGIS Server.