CVE-2026-57534

Summary

Malicious HTML content could be injected into the content of a page in the pretix-pages plugin.

Affected Software

VendorProductVersion RangeStatus
pretixpretix-pages0 < 1.6.4affected

Weaknesses

  • CWE-80: CWE-80 Improper neutralization of Script-Related HTML tags in a web page (basic XSS)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References