CVE-2026-41194

Name of the Vulnerable Software and Affected Versions FreeScout versions prior to 1.8.215

Description The mailbox OAuth disconnect action is implemented using a GET request at the endpoint '/mailbox/oauth-disconnect/{id}/{in out}/{provider}'. This action removes stored OAuth metadata from the mailbox and then redirects. Since it is a GET route, it does not require a CSRF (Cross-Site Request Forgery) token—a mechanism used to prevent unauthorized commands from being transmitted from a user the web application trusts—allowing the action to be triggered cross-site against a logged-in mailbox administrator.

Recommendations Update to version 1.8.215.