Vulnerabilities > Gradio Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-05 | CVE-2024-0964 | Path Traversal vulnerability in Gradio Project Gradio A local file include could be remotely triggered in Gradio due to a vulnerable user-supplied JSON value in an API request. | 9.4 |
2023-12-22 | CVE-2023-51449 | Path Traversal vulnerability in Gradio Project Gradio Gradio is an open-source Python package that allows you to quickly build a demo or web application for your machine learning model, API, or any arbitary Python function. | 7.5 |
2023-12-14 | CVE-2023-6572 | Command Injection vulnerability in Gradio Project Gradio Command Injection in GitHub repository gradio-app/gradio prior to main. | 8.1 |
2023-09-15 | CVE-2023-41626 | Unrestricted Upload of File with Dangerous Type vulnerability in Gradio Project Gradio 3.27.0 Gradio v3.27.0 was discovered to contain an arbitrary file upload vulnerability via the /upload interface. | 4.8 |
2023-06-08 | CVE-2023-34239 | Unspecified vulnerability in Gradio Project Gradio Gradio is an open-source Python library that is used to build machine learning and data science. | 9.1 |
2023-02-23 | CVE-2023-25823 | Use of Hard-coded Credentials vulnerability in Gradio Project Gradio Gradio is an open-source Python library to build machine learning and data science demos and web applications. | 9.8 |
2022-03-17 | CVE-2022-24770 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Gradio Project Gradio `gradio` is an open source framework for building interactive machine learning models and demos. | 6.8 |
2021-12-15 | CVE-2021-43831 | Path Traversal vulnerability in Gradio Project Gradio Gradio is an open source framework for building interactive machine learning models and demos. | 3.5 |