[MEDIUM] baserCMS has a cross-site scripting vulnerability in blog posts

PKSA-kcyg-5jhp-1x3h CVE-2026-30879 GHSA-jmq3-x8q7-j9qm

Affected package: baserproject/basercms

Affected version: <=5.2.2

Reported by:
GitHub