CVE-2026-44392 — Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed — CVE Database · The Intelligence Room