Description
SwaggerUI supports displaying remote OpenAPI definitions through the ?url parameter. This enables robust demonstration capabilities on sites like petstore.swagger.io, editor.swagger.io, and similar sites, where users often want to see what their OpenAPI definitions would look like rendered.
Recommendation
Update the swagger-ui-dist package to the latest compatible version. Followings are version details:
- Affected version(s): < 4.1.3
- Patched version(s): 4.1.3
References
Related Issues
- Astro allows unauthorized third-party images in _image endpoint - CVE-2025-55303
- rgb2hex vulnerable to inefficient regular expression complexity - CVE-2018-25061
- jQuery-UI vulnerable to Cross-site Scripting in dialog closeText - CVE-2016-7103
- Parse Server option `masterKeyIps` vulnerability to IP spoofing - CVE-2023-22474
- Tags:
- npm
- swagger-ui-dist
Anything's wrong? Let us know Last updated on June 02, 2023