Unrated severityNVD Advisory· Published Sep 25, 2025· Updated Sep 26, 2025
CVE-2025-29157
CVE-2025-29157
Description
An issue in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via accessing a non-existent endpoint/cart, the server returns a 404-error page exposing sensitive information including the Servlet name (default) and server version
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- petstore/petstoredescription
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.