CVE-2026-1978 - kalyan02 NanoCMS User Information pagesdata.txt direct request

CVE ID : CVE-2026-1978 Published : Feb. 6, 2026, 5:16 a.m. | 1 hour, 5 minutes ago Description : A vulnerability was detected in kalyan02 NanoCMS up to 0.4. Affected by this issue is some unknown functionality of the file /data/pagesdata.txt of the component User Information Handler. Performing a manipulation results in direct request. It is possible to initiate the attack remotely. The exploit is now public and may be used. You should change the configuration settings. Severity: 5.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...