CVE-2026-1978 in NanoCMSinformation

Résumé

par MITRE • 06/02/2026

A vulnerability was detected in kalyan02 NanoCMS up to 0.4. Affected by this issue is some unknown functionality of the file /data/pagesdata.txt of the component User Information Handler. Performing a manipulation results in direct request. It is possible to initiate the attack remotely. The exploit is now public and may be used. You should change the configuration settings.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgation

06/02/2026

Modérer

accepté

Entrée

VDB-344500

CPE

prêt

CWE

CWE-425 (confirmé)

Exploitation

Télécharger

CVSS

7.5 (NVD)

EPSS

0.00044

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-1978
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-1978
CVE Details	https://www.cvedetails.com/cve/CVE-2026-1978/

◂ Précédent Aperçu Suivant ▸

Interested in the pricing of exploits?

See the underground prices here!