[MEDIUM] AVideo: Password Hash Leak in MobileManager OAuth Redirect URL Enables Account Takeover

PKSA-dbh3-mg7m-c1nc CVE-2026-43875 GHSA-5w8w-26ch-v5cw

Affected package: wwbn/avideo

Affected version: <=29.0

Reported by:
GitHub