4 matches found
CVE-2024-48052
In gradio =4.42.0, the gr.DownloadButton function has a hidden server-side request forgery SSRF vulnerability. The reason is that within the saveurltocache function, there are no restrictions on the URL, which allows access to local target resources. This can lead to the download of local resourc...
Microsoft Internet Explorer 6 - URL Local Resource Access
source: https://www.securityfocus.com/bid/10472/info Microsoft Internet Explorer is prone to a security weakness that may permit unauthorized access to local resources on a client computer. This will effectively bypass security restrictions implemented in Internet Explorer 6 SP1. Specifically, a...
Microsoft Internet Explorer 6 - Codebase Double Backslash Local Zone File Execution
Microsoft Internet Explorer 6 - Codebase Double Backslash Local Zone File Execution source: https://www.securityfocus.com/bid/10344/info A vulnerability has been reported that may potentially permit HTML documents to gain unauthorized access to local resources by using specific syntax when...
Microsoft Internet Explorer 6 - Codebase Double Backslash Local Zone File Execution
source: https://www.securityfocus.com/bid/10344/info A vulnerability has been reported that may potentially permit HTML documents to gain unauthorized access to local resources by using specific syntax when referencing said resource as a value for the CODEBASE object property. Under certain...