[CRITICAL] baserCMS Update Functionality Vulnerable to OS Command Injection

PKSA-mr15-f3n3-4vy5 CVE-2026-30877 GHSA-m9g7-rgfc-jcm7

Affected package: baserproject/basercms

Affected version: <=5.2.2

Reported by:
GitHub