4 matches found
rami.io pretix security breach
rami.io pretix is a ticket store application for conferences, festivals, concerts, tech events, shows, exhibitions, workshops, bars, etc. from the German company rami.io. A security vulnerability exists in rami.io pretix versions prior to 2023.7.2 that stems from allowing Pillow to parse EPS file...
CVE-2023-27891
rami.io pretix before 4.17.1 allows OAuth application authorization from a logged-out session. The fixed versions are 4.15.1, 4.16.1, and 4.17.1...
PYSEC-2023-42
rami.io pretix before 4.17.1 allows OAuth application authorization from a logged-out session. The fixed versions are 4.15.1, 4.16.1, and 4.17.1...
PT-2023-21398 · Rami.Io · Pretix
Name of the Vulnerable Software and Affected Versions: rami.io pretix versions prior to 4.15.1 rami.io pretix versions 4.15.1 through 4.16.0 rami.io pretix versions 4.16.1 through 4.17.0 Description: The issue allows OAuth application authorization from a logged-out session. Recommendations: For...