[MEDIUM] AVideo vulnerable to Mass User PII Disclosure via Missing Authorization in YPTWallet users.json.php

PKSA-9wd9-hqm1-g8vw CVE-2026-34395 GHSA-77jp-mgcw-rfmr

Affected package: wwbn/avideo

Affected version: <=26.0

Reported by:
GitHub