CVE-2026-49001 — Cross-site request forgery (CSRF) vulnerabilities allow attackers to exploit a user's authenticated session to forge cross-site requests, inducing the execution of unintended operations such as tamper — CVE Database · The Intelligence Room