CVE-2026-20750 — Gitea does not properly validate project ownership in organization project operations. A user with project write access in one organization may be able to modify projects belonging to a different orga — CVE Database · The Intelligence Room