CVE-2026-53867 — Capgo before 12.128.2 fails to delete previously uploaded profile images from backend storage when users replace or remove them. Attackers can access orphaned image files through previously generated — CVE Database · The Intelligence Room