[MEDIUM] WWBN AVideo: Stored XSS via Hostile YouTube Video Title in AVideo YouTubeAPI Gallery Section

PKSA-qfq6-tncf-8grt CVE-2026-50183 GHSA-66q5-cj5g-wrfx

Affected package: wwbn/avideo

Affected version: <=29.0

Reported by:
GitHub