Workflow

Pretix

Latest version: v2024.11.0

Vulnerabilities (5)

CVE/PVE Vulnerability ID Advisory Affected versions Severity Severity Score
CVE-2023-44464 65348

pretix before 2023.7.2 allows Pillow to parse EPS files.
  • <4.20.4
  • >=2023.6.0,<2023.6.3
  • >=2023.7.0,<2023.7.2
 HIGH 7.8
CVE-2023-27891 54666

rami.io pretix before 4.17.1 allows OAuth application authorization f…
  • >=4.17.0,<4.17.1
  • >=4.16.0,<4.16.1
  • >=0,<4.15.1
 HIGH 7.5
CVE-2023-44463 65349

An issue was discovered in pretix before 2023.7.1. Incorrect parsing …
  • >=3.0.0,<4.20.2.post1
  • >=2023.6.0,<2023.6.1
  • >=2023.7.0,<2023.7.1
 MEDIUM 5.3
CVE-2024-8113 72971

Stored XSS vulnerabilities in the organizer and event settings of Pre…
  • <2024.7.1
 MEDIUM 5.4
CVE-2024-27447 68476

pretix before 2024.1.1 mishandles file validation.
  • <2024.1.1
 - -