[MEDIUM] AVideo: CSRF on emailAllUsers.json.php Enables Mass Phishing Email to All Users

PKSA-zmm3-dkmp-577r CVE-2026-34611 GHSA-c4xj-x7p8-3x7q

Affected package: wwbn/avideo

Affected version: <=26.0

Reported by:
GitHub