7 matches found
SUSE CVE-2024-47868
Gradio is an open-source Python package designed for quick prototyping. This is a data validation vulnerability affecting several Gradio components, which allows arbitrary file leaks through the post-processing step. Attackers can exploit these components by crafting requests that bypass expected...
PYSEC-2024-217
Gradio is an open-source Python package designed for quick prototyping. This is a data validation vulnerability affecting several Gradio components, which allows arbitrary file leaks through the post-processing step. Attackers can exploit these components by crafting requests that bypass expected...
CVE-2024-47868 Several components’ post-process steps may allow arbitrary file leaks in Gradio
Gradio is an open-source Python package designed for quick prototyping. This is a data validation vulnerability affecting several Gradio components, which allows arbitrary file leaks through the post-processing step. Attackers can exploit these components by crafting requests that bypass expected...
CVE-2024-45190
Mage AI allows remote users with the "Viewer" role to leak arbitrary files from the Mage server due to a path traversal in the "Pipeline Interaction" request...
Exploit for Path Traversal in Jenkins
CVE-2024-23897 - Jenkins Arbitra...
Exploit for Path Traversal in Jenkins
CVE-2024-23897 - Jenkins Arbitra...
Nextcloud: Access to arbitrary file of the Nextcloud Android app from within the Nextcloud Android app
Summary: The Android client of nextcloud com.nextcloud.client allows arbitrary file including protected/private files to be leaked through the file upload functionality. Steps To Reproduce: A report 1142918 has been submitted for the vulnerability of leaking arbitrary protected files. NextCloud...