Hugging Face's logo

Spaces:
attacker-exploiting-everyone
/
gradio
Sleeping

App Files Community
attacker-exploiting-everyone commited on
Commit
405b177
·
verified ·
1 Parent(s): 7cf86e1

Update app.py

Browse files
Files changed (1) hide show
  1. app.py +3 -1
app.py CHANGED
@@ -1,7 +1,9 @@
1
  import gradio as gr
2
 
3
  def greet(name):
 
4
  return "Hello " + name + "!!"
5
 
6
- demo = gr.Interface(fn=greet, inputs="text", outputs="text")
 
7
  demo.launch()
 
1
  import gradio as gr
2
 
3
  def greet(name):
4
+ # Vulnerable to XSS: unsanitized user input directly returned
5
  return "Hello " + name + "!!"
6
 
7
+ # Allow raw HTML rendering
8
+ demo = gr.Interface(fn=greet, inputs="text", outputs="html")
9
  demo.launch()