CVE-2026-56303 - Capgo - Unauthenticated API Key Metadata Disclosure via SECURITY DEFINER RPC Function
CVE ID :CVE-2026-56303 Published : July 11, 2026, 2:16 p.m. | 16 minutes ago Description :Capgo before 12.128.2 contains an information disclosure vulnerability in the find_apikey_by_value PostgreSQL function marked SECURITY DEFINER and executable by the anon role. Unauthenticated attackers...