[MEDIUM] WWBN AVideo has Stored XSS via Malicious EPG XML Program Titles in AVideo EPG Page

PKSA-zd55-pq2p-fmtz CVE-2026-39367 GHSA-rqp3-gf5h-mrqx

Affected package: wwbn/avideo

Affected version: <=26.0

Reported by:
GitHub