CVE-2026-56309 | Capgo up to 12.128.1 Upload Endpoint attachments unrestricted upload
A vulnerability was found in Capgo up to 12.128.1. It has been classified as critical. Affected by this vulnerability is an unknown functionality of the file /files/upload/attachments of the component Upload Endpoint. Performing a manipulation results in unrestricted upload.
This vulnerability is reported as CVE-2026-56309. The attack is possible to be carried out remotely. No exploit exists.