[MEDIUM] AVideo's Privilege Escalation via Unguarded Permission Parameters in signUp API Allows Self-Granting Upload/Stream/Meet Permissions

PKSA-k458-rr3w-813f CVE-2026-33684 GHSA-8j8m-p79x-g4jm

Affected package: wwbn/avideo

Affected version: <29.0

Reported by:
GitHub