CVE-2026-3020 — Identity based authorization bypass vulnerability (IDOR) that allows an attacker to modify the data of a legitimate user account, such as changing the victim's email address, validating the new email — CVE Database · The Intelligence Room