[HIGH] AVideo has SQL Injection in category.php fixCleanTitle() via Unparameterized clean_title and id Variables

PKSA-d1c1-62x6-fsdv CVE-2026-33770 GHSA-584p-rpvq-35vf

Affected package: wwbn/avideo

Affected version: <=26.0

Reported by:
GitHub