HIGH PyPI
GHSA-45rp-q25w-4426 · CVE-2024-8113, PYSEC-2024-180 pretix Stored Cross-site Scripting vulnerability
Modified: 1/21/2025
package
PyPI / pretix
pkg:pypi/pretix
MEDIUM 5.9 PyPI
PYSEC-2026-110 · CVE-2026-2415, GHSA-r8p8-qw9w-j9qv Modified: 5/20/2026
MEDIUM PyPI
GHSA-672r-97r7-vx2q · CVE-2024-27447, PYSEC-2024-253 pretix mishandles file validation
Modified: 6/11/2025
HIGH 7.8 PyPI
GHSA-9jvx-p6mq-fw4v · CVE-2023-44464 pretix allows Pillow to parse EPS files
Modified: 11/28/2024
MEDIUM 5.3 PyPI
GHSA-j9gq-w73w-9h6c · CVE-2023-44463, PYSEC-2023-187 pretix potential IP address spoofing vulnerability
Modified: 10/21/2024
LOW PyPI
GHSA-pmjj-h5jm-vxh4 · CVE-2025-14882 pretix has Broken Access Control Allowing Cross-User File Access via UUID
Modified: 12/20/2025
LOW PyPI
GHSA-r2h2-g46h-8mx8 · CVE-2025-14881 pretix has Broken Access Control Allowing Cross-User File Access via UUID
Modified: 12/20/2025
HIGH 7.5 PyPI
GHSA-r76w-3wwq-jv6v · CVE-2023-27891, PYSEC-2023-42 Insufficient Session Expiration in pretix
Modified: 10/21/2024
MEDIUM 5.9 PyPI
GHSA-r8p8-qw9w-j9qv · CVE-2026-2415, PYSEC-2026-110 pretix unsafely evaluates variables in emails
Modified: 5/20/2026
MEDIUM PyPI
GHSA-wr8q-c73g-m7gp · CVE-2026-5600, PYSEC-2026-111 pretix: API leaks check-in data between events of the same organizer
Modified: 6/8/2026
MEDIUM 4.3 PyPI
PYSEC-2026-111 · CVE-2026-5600, GHSA-wr8q-c73g-m7gp Modified: 5/20/2026
— PyPI
PYSEC-2023-187 · CVE-2023-44463, GHSA-j9gq-w73w-9h6c Modified: 11/8/2023
— PyPI
PYSEC-2023-42 · CVE-2023-27891, GHSA-r76w-3wwq-jv6v Modified: 11/8/2023
MEDIUM 5.4 PyPI
PYSEC-2024-180 · CVE-2024-8113, GHSA-45rp-q25w-4426 Modified: 1/19/2025
— PyPI
PYSEC-2024-253 · CVE-2024-27447, GHSA-672r-97r7-vx2q Modified: 6/11/2025
MEDIUM 6.1 PyPI
PYSEC-2025-154 · CVE-2025-13742 Modified: 5/20/2026