CVE-2026-56230 - Capgo - Broken Object Level Authorization via x-limited-key-id Header
CVE ID :CVE-2026-56230 Published : June 30, 2026, 10:08 p.m. | 1 hour, 4 minutes ago Description :Capgo before 12.128.2 contains a broken object level authorization vulnerability in middlewareKey() that accepts the client-controlled x-limited-key-id header without validating ownership,...