repository icon
gradio-app / gradio Project repository

Build and share delightful machine learning apps, all in Python. 🌟 Star to support our work!

Submit a report

FIRST INTERACTION

WITHINN/A DAYS

REVIEW

WITHIN17 DAYS

FIX

WITHINN/A DAYS

Unauthenticated vibe endpoints allow arbitrary code execution via direct file wr...
dartecheese
duplicate
Critical
DIAGNOSTIC TEST - please ignore - will self-close immediately
powerliftlog
self closed
Test submission - please ignore, will self-close
powerliftlog
self closed
Path Traversal via FileExplorer.preprocess() Allows Sandbox Escape in gradio-app...
galanzi2580-wq
self closed
Test probe — please ignore (huntr 500 diagnosis)
luch4ik
self closed
CORS Misconfiguration Enables Full CSRF on All Remote Gradio Deployments
surrealgrain
self closed
Unauthenticated Remote Code Execution via Vibe Code Editor Endpoint
surrealgrain
self closed
Authentication Bypass to Remote Code Execution in gradio-app/gradio
ce2sec
duplicate
Critical
Unauthenticated Remote Code Execution via `POST /gradio_api/vibe-code` Endpoint...
microwaveovens-yay
duplicate
Critical
Cross-Origin Authentication Bypass via Permissive CORS + SameSite=None Cookies o...
anir0y
duplicate
High
Test
wulonchia-pro
self closed
Unauth RCE + Path Traversal in Gradio Vibe Mode — all vibe endpoints missing log...
lexi-core-ai
duplicate
Critical
Authentication Bypass on Vibe Mode Endpoints Allows Unauthenticated Remote Code...
sfwani
duplicate
Critical
Vibe mode endpoints missing authentication — unauthenticated RCE via POST /vibe-...
microwaveovens-yay
duplicate
Critical
Missing authentication on /monitoring/summary and /profiling/* endpoints leaks s...
projectworks007
duplicate
Medium
Unauthenticated Remote Code Execution via /vibe-code endpoint
cyberwael
self closed
Unauthenticated Information Disclosure via /monitoring/summary Endpoint
0xbassia
duplicate
Medium
Authentication Bypass on /monitoring/summary and /monitoring/{key} Endpoints
tulgaaaaaaaa
duplicate
Medium
Unauthenticated RCE via Vibe Mode Endpoints
buttergolemcode
duplicate
Critical
Vibe mode endpoints missing `login_check` authentication — inconsistent with all...
dave-london
duplicate
Critical
CORS Misconfiguration Enables CSRF Against Authenticated Gradio Deployments
apostolides
duplicate
High
Authentication Bypass on Vibe Mode Endpoints Leads to Remote Code Execution
elucidator-hky
self closed
Unauthenticated Remote Code Execution via Vibe Mode Endpoints
odysseypro25-project
duplicate
Critical
Open Redirect Leading to SSRF via /gradio_api/file= Endpoint
mscgo
self closed
FileExplorer preprocess() path traversal allows root_dir escape via crafted API...
noobosaurus-r3x
self closed
FileExplorer preprocess() Path Traversal — Missing safe_join Allows Arbitrary Fi...
avienma007
self closed
Unauthenticated RCE via Vibe Mode Endpoints Missing login_check Dependency
avienma007
self closed
Stored XSS via Unsanitized {@html} in DataFrame HTML Datatype Enables Same-Origi...
paulmkenny
pending
Workflow_run Artifact Poisoning in previews-deploy.yml enables supply chain pack...
vera-platform
pending
SSRF via raw httpx.get() in extract_svg_content and Audio.stream_output bypasses...
jeremysommerfeld8910-cpu
duplicate
High
Unauthenticated RCE via Vibe-Mode Endpoints Bypassing Authentication
jeremysommerfeld8910-cpu
duplicate
Critical
Predictable Session Secret Allows Session Cookie Forgery When OAUTH_CLIENT_SECRE...
wubabalala
pending
Unauthenticated RCE via Vibe-Mode Endpoints Bypassing Authentication
jeremysommerfeld8910-cpu
self closed
Unauthenticated RCE via Vibe-Mode Endpoints Bypassing Authentication
jeremysommerfeld8910-cpu
self closed
Path traversal in undo-vibe-edit hash parameter enables arbitrary .py file read...
jeremysommerfeld8910-cpu
pending
Unauthenticated RCE via vibe-mode endpoints bypassing login_check authentication
jeremysommerfeld8910-cpu
self closed
SSRF via raw httpx.get() in Audio.stream_output bypasses safehttpx protections
jeremysommerfeld8910-cpu
self closed
Authentication Bypass on /monitoring/summary Exposes Queue Analytics Without Cre...
galanzi2580-wq
pending
Information Disclosure via Unauthenticated MCP Schema Endpoint in Gradio
enzogaillardsystems
pending
Path Traversal via Unsanitized Hash Parameter in undo-vibe-edit Endpoint
wernerina
not applicable
Unauthenticated Remote Code Execution via Vibe Mode Endpoints
wernerina
duplicate
Critical
Unauthenticated Remote Code Execution via Vibe Code Endpoints Missing login_chec...
invisiblemonsters
duplicate
Critical
Path Traversal in FileExplorer.preprocess() allows reading files outside root_d...
shima-coder
duplicate
High
Path Traversal in FileExplorer.preprocess() Allows Reading Arbitrary Server File...
seonghoj-bright
duplicate
High
Unauthenticated Remote Code Execution via Gradio Vibe Mode `/vibe-code` Endpoint
alrightryanx
duplicate
Critical
Unauthenticated Access to /monitoring/summary Endpoint Leaks Operational Metrics
galanzi2580-wq
duplicate
Medium
Open Redirect via /file= Endpoint Allows Redirection to Arbitrary External URLs
galanzi2580-wq
self closed
CORS Misconfiguration in CustomCORSMiddleware Allows Cross-Origin Credential The...
galanzi2580-wq
self closed
Unauthenticated Remote Code Execution via POST /vibe-code endpoint
yanivfi1978
duplicate
Critical
SSRF in Audio Component `stream_output` -- Missed During safehttpx Migration (By...
q1uf3ng
pending
Unauthenticated Remote Code Execution via Vibe Mode Endpoints (Missing Authentic...
l1iith
duplicate
Critical
FileExplorer.preprocess() path traversal allows escaping root_dir — ls() is prot...
wubabalala
pending
Unauthenticated Cancel Endpoint Enables Cross-Session Denial of Service
theagentknownasren-gif
pending
Unauthenticated Media Stream Access Enables Cross-Session Audio/Video Eavesdropp...
theagentknownasren-gif
pending
Unauthenticated Remote Code Execution via Vibe Mode Endpoints
theagentknownasren-gif
pending
Open Redirect in OAuth Callback Allows Phishing and Token Theft
theagentknownasren-gif
duplicate
None
Open Redirect
theagentknownasren-gif
pending
Unauthenticated stream data injection via POST /stream/{event_id} bypasses login...
theagentknownasren-gif
pending
Missing Authentication on /monitoring/summary Endpoint Leads to Information Disc...
q1uf3ng
not applicable
Incomplete Fix for CVE-2025-5320: IPv6 Localhost (::1) Still Missing from CORS l...
q1uf3ng
duplicate
Medium
Stored Blind CSS Injection via LaTeX rendering leading to User IP Exfiltration
unicuervo16
pending
Host Header Injection in OAuth flow leading to Account Takeover
c3p31113
pending
Chained Local File Inclusions via RCE in Textbox Component
f0xtr07
pending
Arbitrary File Copy via Path Manipulation
pangflame
duplicate
High