Login Sign Up

CVE-2026-1978

5.3 MEDIUM

📋 TL;DR

A direct request vulnerability in kalyan02 NanoCMS up to version 0.4 allows attackers to remotely manipulate the /data/pagesdata.txt file through the User Information Handler component. This could lead to unauthorized access or modification of user information. All users running vulnerable versions of NanoCMS are affected.

💻 Affected Systems

Products:
  • kalyan02 NanoCMS
Versions: Up to and including version 0.4
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the User Information Handler component specifically through the /data/pagesdata.txt file.

📦 What is this software?

Nanocms by Kalyan02

View all CVEs affecting Nanocms →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could modify user data, potentially leading to account takeover, data corruption, or unauthorized administrative access.

🟠

Likely Case

Unauthorized viewing or modification of user information stored in pagesdata.txt, potentially exposing sensitive data.

🟢

If Mitigated

Limited impact with proper access controls and monitoring in place, though the vulnerability still exists.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

The exploit is public and may be used, with remote exploitation possible without authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None provided

Restart Required: No

Instructions:

No official patch available. Consider upgrading if a newer version exists or implementing workarounds.

🔧 Temporary Workarounds

Restrict access to /data/pagesdata.txt

all

Configure web server to block direct requests to the vulnerable file

# Apache: Add to .htaccess
<Files "pagesdata.txt">
    Order Allow,Deny
    Deny from all
</Files>
# Nginx: Add to server block
location ~ /data/pagesdata.txt {
    deny all;
}

Move sensitive data file

linux

Relocate pagesdata.txt outside web root directory

mv /path/to/webroot/data/pagesdata.txt /path/outside/webroot/

🧯 If You Can't Patch

  • Implement strict network access controls to limit who can reach the NanoCMS instance
  • Enable detailed logging and monitoring for access attempts to /data/pagesdata.txt

🔍 How to Verify

Check if Vulnerable:

Check if NanoCMS version is 0.4 or earlier and if /data/pagesdata.txt is accessible via direct HTTP request

Check Version:

Check NanoCMS configuration files or admin panel for version information

Verify Fix Applied:

Attempt to access /data/pagesdata.txt directly via browser or curl - should return 403/404 error

📡 Detection & Monitoring

Log Indicators:

  • HTTP requests to /data/pagesdata.txt
  • Unusual file access patterns in web server logs

Network Indicators:

  • Unexpected GET/POST requests to the vulnerable endpoint

SIEM Query:

source="web_server_logs" AND (uri="/data/pagesdata.txt" OR uri LIKE "%/pagesdata.txt%")

📊 Metadata

CVE ID: CVE-2026-1978
CVSS v3 Score: 5.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-425
EPSS Score: 0.04% exploit probability (12.5th percentile)
Published: February 6, 2026
Last Updated: February 27, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-1978, you might also want to check these:

CVE-2024-0204 9.8

This vulnerability allows an unauthenticated attacker to bypass authentication in Fortra's GoAnywher...

Same vulnerability type (CWE-425)
CVE-2021-36560 9.8

CVE-2021-36560 is an authentication bypass vulnerability in Phone Shop Sales Management System 1.0 t...

Same vulnerability type (CWE-425)
CVE-2019-12768 9.8

This vulnerability allows attackers to bypass authentication on D-Link DAP-1650 wireless range exten...

Same vulnerability type (CWE-425)