1. Gradio Patches Critical SSRF Vulnerability in Version 6 Update — Users Urged to Upgrade Immediately
The maintainers of Gradio, the popular open-source framework for building machine learning applications, have addressed a critical server-side request forgery (SSRF) vulnerability tracked as CVE-2026-28416. The flaw resided in the `gr.load()` configuration processing logic, where a malicious `proxy_url` parameter could...