2 matches found
CVE-2024-47084
Gradio (Python library) has a CORS origin validation flaw: when a request carries a cookie, the server may not validate the origin, enabling a malicious site on the client to make unauthorized requests to a locally deployed Gradio server. Reported consequences include file uploads, token theft, a...
africanwhisper (>=0.2.1 <=0.9.0), agentx (>=0.0.6 <=0.0.27) +56 more potentially affected by CVE-2024-47084 via gradio (>=4.0.0b15 <=4.43.0)
gradio PYPI version =4.0.0b15, =0.2.1, =0.0.6, =0.4.0, =25.3.1, =1.1.0, =0.1.0, =25.3.1, =0.1.2, =0.2.11, =25.3.4, =0.1.1, =0.5.0, =0.0.41, =0.0.65 and more Source cves: CVE-2024-47084 Source advisory: SNYK:PYTHON-GRADIO-8180440...