Low severityGHSA Advisory· Published Dec 19, 2025· Updated Apr 15, 2026
CVE-2025-14882
CVE-2025-14882
Description
An API endpoint allowed access to sensitive files from other users by knowing the UUID of the file that were not intended to be accessible by UUID only.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
pretixPyPI | >= 2025.10.0, < 2025.10.1 | 2025.10.1 |
pretixPyPI | >= 2025.9.0, < 2025.9.3 | 2025.9.3 |
pretixPyPI | < 2025.8.3 | 2025.8.3 |
Affected products
2Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.