CVE-2025-13742 | pretix prior 2025.7.0/2025.8.0/2025.9.0/2025.10.0 Email Template cross site scripting

Inserito da Angelo Barbosa | Nov 27, 2025 | CVE

A vulnerability described as problematic has been identified in pretix. The affected element is an unknown function of the component Email Template Handler. The manipulation results in basic cross site scripting.

This vulnerability is reported as CVE-2025-13742. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is recommended.

CVE-2025-13742 | pretix prior 2025.7.0/2025.8.0/2025.9.0/2025.10.0 Email Template cross site scripting

Post correlati

CVE-2024-6840 | Red Hat Ansible Automation Controller HTTP Request Privilege Escalation

CVE-2024-41432 | Likeshop up to 2.5.7.20210811 Header X-Forwarded/Client-IP access control

CVE-2025-13576 | code-projects Blog Site 1.0 /admin.php improper authorization

CVE-2024-32999 | Huawei HarmonyOS/EMUI OS Security Module logic error