VYPR
Unrated severityNVD Advisory· Published Feb 6, 2026· Updated Feb 23, 2026

kalyan02 NanoCMS User Information pagesdata.txt direct request

CVE-2026-1978

Description

A vulnerability was detected in kalyan02 NanoCMS up to 0.4. Affected by this issue is some unknown functionality of the file /data/pagesdata.txt of the component User Information Handler. Performing a manipulation results in direct request. It is possible to initiate the attack remotely. The exploit is now public and may be used. You should change the configuration settings.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • kalyan02/NanoCMSv5
    cpe:2.3:a:kalyan02:nanocms:*:*:*:*:*:*:*:*
    Range: 0.1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.