Lucene search
K

PYSEC-2025-154

🗓️ 27 Nov 2025 11:15:47Reported by Python Packaging AdvisoryType 
pypa
 pypa
🔗 github.com👁 9 Views

Emails use placeholders like {name}; names with HTML render as HTML and can enable phishing.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2025-13742
27 Nov 202512:51
circl
CNNVD
pretix 安全漏洞
27 Nov 202500:00
cnnvd
CVE
CVE-2025-13742
27 Nov 202511:04
cve
Cvelist
CVE-2025-13742 Limited HTML injection in emails
27 Nov 202511:04
cvelist
EUVD
EUVD-2025-199816
27 Nov 202512:30
euvd
Github Security Blog
pretix has Email Content Injection Through Maliciously Formatted Names
27 Nov 202512:30
github
NVD
CVE-2025-13742
27 Nov 202511:15
nvd
OSV
GHSA-2MM6-624X-FQRR pretix has Email Content Injection Through Maliciously Formatted Names
27 Nov 202512:30
osv
OSV
PYSEC-2025-154
27 Nov 202511:15
osv
Positive Technologies
PT-2025-48262
27 Nov 202500:00
ptsecurity
Rows per page
Vulners
Node
pypipretixRange1.0.02025.7.2

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

20 May 2026 09:19Current
5.8Medium risk
Vulners AI Score5.8
CVSS 3.16.1
CVSS 46.1
EPSS0.00155
SSVC
9