4 matches found
CVE-2024-1183
An SSRF Server-Side Request Forgery vulnerability exists in the gradio-app/gradio repository, allowing attackers to scan and identify open ports within an internal network. By manipulating the 'file' parameter in a GET request, an attacker can discern the status of internal ports based on the...
PT-2024-17278 · Gradio · Gradio
Name of the Vulnerable Software and Affected Versions: gradio-app/gradio affected versions not specified Description: A Server-Side Request Forgery SSRF issue exists, allowing attackers to scan and identify open ports within an internal network. By manipulating the file parameter in a GET request...
Gradio 输入验证错误漏洞
Gradio is an open source Python library that is a way to demonstrate machine learning models through a friendly web interface. Gradio suffers from an input validation error vulnerability that stems from the presence of a server-side request forgery vulnerability that allows an attacker to scan an...
CVE-2019-0363
Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services Advanced model, before version 1.0.118, to overload the server or retrieve information about internal network ports...