CVE-2026-56223 - Capgo - Account Takeover via Cross-Domain SSO Email Assertion in provision-user
CVE ID :CVE-2026-56223 Published : June 24, 2026, 11:53 a.m. | 1 hour, 17 minutes ago Description :Capgo before 12.128.2 contains a cross-domain SSO account takeover vulnerability in the provision-user endpoint that allows attackers to merge arbitrary victim accounts based on email match...