CVE-2025-13742

🗓️ 27 Nov 2025 11:04:36Reported by rami.ioType

CVE-2025-13742: Placeholder based HTML injection in emails can aid phishing by rendering user content.

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2025-13742	27 Nov 202512:51	–	circl
CNNVD	pretix 安全漏洞	27 Nov 202500:00	–	cnnvd
Cvelist	CVE-2025-13742 Limited HTML injection in emails	27 Nov 202511:04	–	cvelist
EUVD	EUVD-2025-199816	27 Nov 202512:30	–	euvd
NVD	CVE-2025-13742	27 Nov 202511:15	–	nvd
OSV	PYSEC-2025-154	27 Nov 202511:15	–	osv
Positive Technologies	PT-2025-48262	27 Nov 202500:00	–	ptsecurity
PyPA	PYSEC-2025-154	27 Nov 202511:15	–	pypa
RedhatCVE	CVE-2025-13742	28 Nov 202520:08	–	redhatcve
Snyk	Cross-site Scripting (XSS)	27 Nov 202511:41	–	snyk

NVD

Node

pretix pretixRange1.0.0–2025.7.2

pretix pretixMatch2025.8.0

pretix pretixMatch2025.9.0

[
  {
    "collectionURL": "https://pypi.org/",
    "defaultStatus": "unaffected",
    "packageName": "pretix",
    "product": "pretix",
    "repo": "https://github.com/pretix/pretix",
    "vendor": "pretix",
    "versions": [
      {
        "lessThan": "2025.7.0",
        "status": "affected",
        "version": "1.0.0",
        "versionType": "python"
      },
      {
        "changes": [
          {
            "at": "2025.7.2",
            "status": "unaffected"
          }
        ],
        "lessThan": "2025.8.0",
        "status": "affected",
        "version": "2025.7.0",
        "versionType": "python"
      },
      {
        "changes": [
          {
            "at": "2025.8.1",
            "status": "unaffected"
          }
        ],
        "lessThan": "2025.9.0",
        "status": "affected",
        "version": "2025.8.0",
        "versionType": "python"
      },
      {
        "changes": [
          {
            "at": "2025.9.1",
            "status": "unaffected"
          }
        ],
        "lessThan": "2025.10.0",
        "status": "affected",
        "version": "2025.9.0",
        "versionType": "python"
      }
    ]
  }
]

Source	Link
pretix	www.pretix.eu/about/en/blog/20251126-release-2025-9-1/

30 Dec 2025 15:38Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.16.1

CVSS 46.1

EPSS0.00028

SSVC

CWE-116