CVE-2026-56216 - Capgo - Scope Escalation via API Key Creation in /functions/v1/apikey
CVE ID :CVE-2026-56216 Published : June 20, 2026, 12:14 a.m. | 55 minutes ago Description :Capgo before 12.128.2 contains a scope escalation vulnerability in the POST /functions/v1/apikey endpoint that allows app-limited API keys to mint unrestricted keys by setting empty limits. Attackers...