gradio-app/gradio is vulnerable to a local file inclusion vulnerability due to improper validation of user-supplied input in the UploadButton component.
View the template here CVE-2024-1728.yaml
References:
https://nvd.nist.gov/vuln/detail/CVE-2024-1728