Swagger Petstore

swagger_petstore

Vendor: Smartbear • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-29157 1Smartbear 1Swagger Petstore Oct 14, 2025 Sep 25, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via accessing a non-existent endpoint/cart, the server returns a 404-error page exposing sensitive information including the Servlet name (d...Show more An issue in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via accessing a non-existent endpoint/cart, the server returns a 404-error page exposing sensitive information including the Servlet name (default) and server versionShow less
CVE-2025-29156 1Smartbear 1Swagger Petstore Oct 14, 2025 Sep 25, 2025 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Cross Site Scripting vulnerability in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via a crafted script to the /api/v3/pet
CVE-2025-29155 1Smartbear 1Swagger Petstore Oct 3, 2025 Sep 25, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via the DELETE endpoint