[MEDIUM] AVideo has an Unauthenticated Password Hash Oracle via encryptPass.json.php

PKSA-v5mg-73g8-w2x4 CVE-2026-33041 GHSA-px7x-gq96-rmp5

Affected package: wwbn/avideo

Affected version: <=25.0

Reported by:
GitHub