Browse all 10 CVE security advisories affecting pretix. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Pretix is an open-source event ticketing platform used for selling tickets and managing event registrations. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation and access control issues. The platform has faced security incidents, including a 2020 vulnerability allowing unauthorized access to event data. Pretix maintains regular security updates but remains susceptible to common web application flaws due to its complex functionality. Organizations using Pretix should implement strict access controls and promptly apply security patches to mitigate risks associated with its 10 documented CVEs.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-5599 | API allows deletion of users of other instance — VenuelessCWE-653 | 6.5AI | MediumAI | 2026-04-05 |
| CVE-2026-4982 | Unauthorized access to chat contents — VenuelessCWE-20 | 3.1 | - | 2026-03-27 |
This page lists every published CVE security advisory associated with pretix. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.