Smartbear Swagger Petstore — known CVE vulnerabilities
Every CVE whose affected-product data names Smartbear Swagger Petstore, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-29155 — CVSS 6.5 (medium): An issue in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via the DELETE endpoint
CVE-2025-29157 — CVSS 6.5 (medium): An issue in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via accessing a non-existent endpoint/cart, the server…
CVE-2025-29156 — CVSS 6.1 (medium): Cross Site Scripting vulnerability in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via a crafted script to the…