[HIGH] Craft CMS vulnerable to behavior injection RCE via EntryTypesController

PKSA-1n2n-7k4d-96rt CVE-2026-32263 GHSA-qx2q-q59v-wf3j

Affected package: craftcms/cms

Affected version: >=5.6.0,<=5.9.10

Reported by:
GitHub