A vulnerability described as problematic has been identified in Capgo up to 12.128.1 . This issue affects some unknown processing of the component confirm-signup Endpoint . The manipulation of the argument confirmation_url results in open redirect. This vulnerability is reported as CVE-2026-56332 . The attack can be launched remotely. No exploit exists. Upgrading the affected component is recommended.