CVE-2026-56330 | Capgo up to 12.128.1 callbackUrl/successUrl/cancelUrl redirect (GHSA-grc7-98pf-h8hq)

Inserito da Angelo Barbosa | Giu 20, 2026 | CVE

A vulnerability classified as problematic was found in Capgo up to 12.128.1. The affected element is an unknown function. Such manipulation of the argument callbackUrl/successUrl/cancelUrl leads to open redirect.

This vulnerability is traded as CVE-2026-56330. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is advised.

CVE-2026-56330 | Capgo up to 12.128.1 callbackUrl/successUrl/cancelUrl redirect (GHSA-grc7-98pf-h8hq)

Post correlati

CVE-2024-26481 | Kirby CMS 4.1.0 URL Parameter cross site scripting

CVE-2025-51281 | D-Link D-Link DI-8100 16.07.26A1 qj_asp val/id buffer overflow

CVE-2024-2744 | NextGEN Gallery Plugin up to 3.59.0 on WordPress Setting cross site scripting

CVE-2026-7734 | osrg GoBGP up to 4.3.0 SRv6 L3 Service prefix_sid.go SRv6L3ServiceAttribute.DecodeFromBytes data denial of service