CVE-2026-21861 — baserCMS is a website development framework. Prior to version 5.2.3, baserCMS contains an OS command injection vulnerability in the core update functionality. An authenticated administrator can execut — CVE Database · The Intelligence Room