CVE ID :CVE-2026-56243 Published : June 23, 2026, 12:12 p.m. | 57 minutes ago Description :Capgo before 12.128.2 contains a security control bypass vulnerability where the PostgREST/RLS plane accepts plaintext API keys through the capgkey header despite enforce_hashed_api_keys being enabled....

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-56243 - Capgo - Hashed API Key Enforcement Bypass via PostgREST/RLS Plane

VERWANDTEARTIKEL

Cordyceps Supply Chain Flaw Impacting Code Repositories at thousands of Organizations

CVE-2026-12249 in Canonical ADSys: MITM ermöglicht Manipulation des System-Trust-Stores

CVE-2026-54892 - Plug: quadratic-time decoding of nested query/body parameters enables denial of service

CVE-2026-56784 - OpenRemote Manager - Cross-Tenant IDOR in Bulk Alarm Deletion

CVE-2026-56322 - Capgo - Information Disclosure via Unauthenticated /updates defaultChannel Parameter

CVE-2026-56315 - picklescan - Remote Code Execution via Unblocked Standard Library Modules