CVE-2026-2415 | pretix prior 2025.9.0/2025.10.0/2026.1.0/2026.1.1 Placeholder dynamic variable evaluation

Inserito da Angelo Barbosa | Feb 16, 2026 | CVE

A vulnerability was found in pretix. It has been declared as problematic. This vulnerability affects unknown code of the component Placeholder Handler. Such manipulation leads to dynamic variable evaluation.

This vulnerability is traded as CVE-2026-2415. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-2415 | pretix prior 2025.9.0/2025.10.0/2026.1.0/2026.1.1 Placeholder dynamic variable evaluation

Post correlati

CVE-2025-7803 | descreekert wx-discuz up to 12bd4745c63ec203cb32119bf77ead4a923bf277 /wx.php validToken echostr cross site scripting

CVE-2024-34959 | DedeCMS 5.7.113 sys_data_replace.php cross site scripting

CVE-2025-8772 | Vinades NukeViet up to 4.5.06 Module index.php?language=en&nv=upload server-side request forgery

CVE-2025-22795 | Thorsten Krug Multilang Contact Form Plugin up to 1.5 on WordPress cross site scripting