CVE-2026-13237: Incorrect Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents version | AI Sec Watch