2 matches found
CVE-2026-56330
creationtimestamp| type| source ---|---|--- 2026-06-20 20:28:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moqp2fi5lq22 2026-06-21 13:11:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116788263084343961...
CVE-2026-56330
Capgo before 12.128.2 contains an open redirect vulnerability in stripeportal and stripecheckout endpoints that accept unvalidated callbackUrl, successUrl, and cancelUrl parameters. Authenticated attackers can craft malicious billing URLs to redirect users to attacker-controlled domains for...