[HIGH] WWBN AVideo has CORS Origin Reflection with Credentials on Sensitive API Endpoints Enables Cross-Origin Account Takeover

PKSA-5c4b-gnfd-8xsq GHSA-ccq9-r5cw-5hwq

Affected package: wwbn/avideo

Affected version: <=29.0

Reported by:
GitHub