GHSA-26jh-r8g2-6fpr: Gradio's dropdown component pre-process step does not limit the values to those in the dropdown list

GHSA-gvv6-33j7-884g: Gradio has an XSS on every Gradio server via upload of HTML files, JS files, or SVG files

There is a Cross Site Scripting Stored (XSS) vulnerability in NukeViet CMS before 4.5.02.

**Cross-site Scripting in NukeViet CMS**

Moderate severity GitHub Reviewed Published Jun 22, 2022 • Updated Jun 23, 2022