Browse all 6 CVE security advisories affecting Cap-go. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-56082 | Capgo - Unauthenticated Cross-Tenant Billing Log Tampering via public.record_build_time RPC — capgoCWE-284 | 7.5 | High | 2026-06-19 |
| CVE-2026-56081 | Cap-go - Account Lockout via 2FA Misconfiguration on Unverified Email — capgoCWE-640 | 9.1 | Critical | 2026-06-19 |
| CVE-2026-56080 | Cap-go - Authentication Logic Flaw in Enforce Password Policy — capgoCWE-287 | 4.9 | Medium | 2026-06-19 |
| CVE-2026-56073 | Cap-go - OTP Bypass via Response Manipulation in Email Verification — capgoCWE-345 | 9.4 | Critical | 2026-06-19 |
| CVE-2026-53982 | Cap-go Console < 12.28.2 Account Deletion DoS via Device Identifier Association — capgoCWE-645 | 6.5 | Medium | 2026-06-12 |
| CVE-2026-53981 | Cap-go < v12.128.2 Account Takeover via Unauthenticated Email Change Mechanism — Cap-goCWE-306 | 7.6 | High | 2026-06-12 |
This page lists every published CVE security advisory associated with Cap-go. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.