[MEDIUM] Statamic vulnerable to privilege escalation via stored cross-site scripting

PKSA-thnk-qh3m-ttzb CVE-2026-32612 GHSA-hcch-w73c-jp4m

Affected package: statamic/cms

Affected version: >=6.0.0,<6.6.2

Reported by:
GitHub