[HIGH] WWBN AVideo has an incomplete fix for CVE-2026-33502: Command Injection

PKSA-v7bq-jd15-qdrz CVE-2026-41064 GHSA-pq8p-wc4f-vg7j

Affected package: wwbn/avideo

Affected version: <=29.0

Reported by:
GitHub