A local file include could be remotely triggered in Gradio due to a vulnerable user-supplied JSON value in an API request.
{ "github_reviewed_at": "2024-02-06T20:25:41Z", "nvd_published_at": "2024-02-05T23:15:08Z", "github_reviewed": true, "cwe_ids": [ "CWE-22" ], "severity": "HIGH" }