VYPR
High severityNVD Advisory· Published Mar 6, 2026· Updated Mar 6, 2026

Idno: Remote Code Execution via Chained Import File Write and Template Path Traversal

CVE-2026-28507

Description

Idno is a social publishing platform. Prior to version 1.6.4, there is a remote code execution vulnerability via chained import file write and template path traversal. This issue has been patched in version 1.6.4.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
idno/knownPackagist
< 1.6.41.6.4

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.