Information Disclosure in NoneCMS v1.3 allows remote malicious users to obtain sensitive information via the component "/nonecms/vendor".
5none nonecms 1.3.0