Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| # | POC Description | Source Link | Shenlong Link |
|---|
| CVE-2026-56230 | 8.8 HIGH | Capgo - Broken Object Level Authorization via x-limited-key-id Header |
| CVE-2026-56247 | 8.8 HIGH | Capgo - Privilege Escalation via Cross-Scope RBAC Role Assignment |
| CVE-2026-56233 | 8.3 HIGH | Capgo - SSRF and Privilege Escalation via Path Traversal in Builder Upload Proxy |
| CVE-2026-56286 | 8.1 HIGH | Capgo - Account Deletion Without Password Confirmation |
| CVE-2026-56219 | 7.5 HIGH | Capgo - Unauthenticated RBAC Bindings and Email Disclosure via get_org_user_access_rbac NU |
| CVE-2026-56300 | 7.5 HIGH | Capgo - Unauthenticated API Key Validity and Permission Oracle via RPC Functions |
| CVE-2026-56320 | 7.1 HIGH | Capgo - Org/App Scope Mismatch in Device Creation Endpoint |
| CVE-2026-56328 | 6.5 MEDIUM | Capgo - Integrity Issue in Release Routing via Multiple Public Channels |
| CVE-2026-56224 | 5.4 MEDIUM | Capgo - Login CSRF and Session Fixation via URL Query Parameters |
| CVE-2026-56331 | 5.3 MEDIUM | Capgo - Improper Error Handling in Accept Invitation Endpoint via Invalid Magic String |
| CVE-2026-56327 | 5.3 MEDIUM | Capgo - Unauthenticated Organization Existence Oracle via public.invite_user_to_org RPC |
| CVE-2026-56318 | 5.3 MEDIUM | Capgo - Information Disclosure via /private/validate_password_compliance Endpoint |
| CVE-2026-56333 | 4.3 MEDIUM | Capgo - Server-Side Validation Bypass via Direct Browser-Side Organization Security Settin |
| CVE-2026-56334 | 4.3 MEDIUM | Capgo - Missing UPDATE RLS Policy for Build Status Persistence |
No comments yet