CVE-2026-49455 Blast Radius

MEDIUM • CVSS 6.5Waku: Cross-Origin CSRF on RSC Server Action Dispatch ## Summary Waku's RSC request dispatcher invokes server actions without validating the request

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-49455.