Vulnerabilidades em gradio-app
48 resultadosCVE-2024-1728HIGHLocal File Inclusion in gradio-app/gradioEPSS 85.4%CVE-2024-4325HIGHServer-Side Request Forgery (SSRF) in gradio-app/gradioEPSS 37.4%CVE-2024-1561HIGHArbitrary Local File Read via Component Method Invocation in gradio-app/gradioEPSS 9.2%CVE-2021-43831HIGHFiles on the host computer can be accessed from the Gradio interfaceEPSS 3.8%CVE-2026-28414HIGHGradio has Absolute Path Traversal on Windows with Python 3.13+EPSS 3.1%CVE-2023-51449MEDIUMMake the `/file` secure against file traversal attacksEPSS 2.3%CVE-2024-1540HIGHCommand Injection in gradio-app/gradio via deploy+test-visual.yml workflowEPSS 2.0%CVE-2024-1183MEDIUMSSRF Vulnerability in gradio-app/gradioEPSS 1.8%CVE-2023-6572CRITICALCommand Injection in gradio-app/gradioEPSS 1.7%CVE-2024-4253HIGHCommand Injection in gradio-app/gradioEPSS 1.7%CVE-2022-24770HIGHImproper Neutralization of Formula Elements in a CSV File in Gradio FlaggingEPSS 1.2%CVE-2024-4940MEDIUMOpen Redirect in gradio-app/gradioEPSS 1.0%CVE-2024-10624HIGHRegular Expression Denial of Service (ReDoS) in gradio-app/gradioEPSS 1.0%CVE-2024-0964HIGHLFI in GradioEPSS 1.0%CVE-2025-23042HIGHGradio Blocked Path ACL Bypass VulnerabilityEPSS 0.8%CVE-2024-4941HIGHLocal File Inclusion in JSON component in gradio-app/gradioEPSS 0.8%CVE-2024-47868MEDIUMSeveral components’ post-process steps may allow arbitrary file leaks in GradioEPSS 0.8%CVE-2024-8966HIGHDenial of Service in gradio-app/gradioEPSS 0.7%CVE-2024-8021MEDIUMOpen Redirect in gradio-app/gradioEPSS 0.7%CVE-2024-47164LOWThe `is_in_or_equal` function may be bypassed in GradioEPSS 0.7%