GHSA-26jh-r8g2-6fpr: Gradio's dropdown component pre-process step does not limit the values to those in the dropdown list

GHSA-gvv6-33j7-884g: Gradio has an XSS on every Gradio server via upload of HTML files, JS files, or SVG files

GHSA-279j-x4gx-hfrh: Gradio uses insecure communication between the FRP client and server

GHSA-xh2x-3mrm-fwqm: Gradio has a race condition in update_root_in_config may redirect user traffic

GHSA-j757-pf57-f8r4: Gradio performs a non-constant-time comparison when comparing hashes

Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.

**Answer vulnerable to Business Logic Errors**

High severity GitHub Reviewed Published Mar 21, 2023 to the GitHub Advisory Database • Updated Mar 21, 2023

Headline

GHSA-r95w-7cpx-h5mx: Answer vulnerable to Business Logic Errors

Related news

ghsa: Latest News