A vulnerability was found in Capgo up to 12.128.1. It has been rated as problematic. The affected element is an unknown function of the file /private/sso/check-domain of the component SSO Provider. The manipulation of the argument org_id/provider_id leads to information disclosure.

This vulnerability is uniquely identified as CVE-2026-56336. The attack is possible to be carried out remotely. No exploit exists.