CVE-2024-48052 | Gradio up to 4.42.0 gr.DownloadButton server-side request forgery

CVE-2024-48052 | Gradio up to 4.42.0 gr.DownloadButton server-side request forgery

A vulnerability was found in Gradio up to 4.42.0 and classified as critical. Affected by this issue is the function gr.DownloadButton. The manipulation leads to server-side request forgery. This vulnerability is handled as CVE-2024-48052. It is possible to launch the attack on the local host. There is no exploit available.