Unrated severityNVD Advisory· Published Feb 6, 2026· Updated Feb 23, 2026
kalyan02 NanoCMS User Information pagesdata.txt direct request
CVE-2026-1978
Description
A vulnerability was detected in kalyan02 NanoCMS up to 0.4. Affected by this issue is some unknown functionality of the file /data/pagesdata.txt of the component User Information Handler. Performing a manipulation results in direct request. It is possible to initiate the attack remotely. The exploit is now public and may be used. You should change the configuration settings.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- kalyan02/NanoCMSv5cpe:2.3:a:kalyan02:nanocms:*:*:*:*:*:*:*:*Range: 0.1
Patches
Vulnerability mechanics
References
4- github.com/kalyan02/NanoCMS/blob/master/data/pagesdata.txtmitreexploit
- vuldb.commitrethird-party-advisory
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
News mentions
0No linked articles in our index yet.