[HIGH] WWBN AVideo has CSRF in configurationUpdate.json.php Enables Full Site Configuration Takeover Including Encoder URL and SMTP Credentials

PKSA-nfcd-g6c3-5tff GHSA-vvfw-4m39-fjqf

Affected package: wwbn/avideo

Affected version: <=29.0

Reported by:
GitHub