Gradio v3.27.0 exists to contain an arbitrary file upload vulnerability via the /upload interface.
gradio project gradio 3.27.0