Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-14882
CVE-2025-14882
An API endpoint allowed access to sensitive files from other users by knowing the UUID of the file that were not intended to be accessible by UUID only.
Published Dec 21, 2025
https://github.com/advisories/GHSA-pmjj-h5jm-vxh4
CVSS Score
Medium
6.0
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
pypi
pretix
1.0.0
pypi
pretix
1.0.0b1
pypi
pretix
1.0.0b2
pypi
pretix
1.1.0
pypi
pretix
1.1.1
pypi
pretix
1.1.2
pypi
pretix
1.1.3
pypi
pretix
1.10.0
pypi
pretix
1.10.1
pypi
pretix
1.11.0
pypi
pretix
1.11.1
pypi
pretix
1.12.0
pypi
pretix
1.12.1
pypi
pretix
1.13.0
pypi
pretix
1.13.1
pypi
pretix
1.14.0
pypi
pretix
1.15.0
pypi
pretix
1.15.1
pypi
pretix
1.15.2
pypi
pretix
1.16.0
pypi
pretix
1.17.0
pypi
pretix
1.17.1
pypi
pretix
1.2.0
pypi
pretix
1.2.1.post2
pypi
pretix
1.2.2
pypi
pretix
1.3.0.post1
pypi
pretix
1.3.0
pypi
pretix
1.3.1
pypi
pretix
1.4.0
pypi
pretix
1.4.1
pypi
pretix
1.5.0
pypi
pretix
1.5.1
pypi
pretix
1.5.2
pypi
pretix
1.6.0
pypi
pretix
1.6.1
pypi
pretix
1.6.2
pypi
pretix
1.7.0
pypi
pretix
1.7.1
pypi
pretix
1.7.2
pypi
pretix
1.8.0
pypi
pretix
1.8.1
pypi
pretix
1.9.0
pypi
pretix
1.9.1
pypi
pretix
2.0.0
pypi
pretix
2.1.0
pypi
pretix
2.2.0
pypi
pretix
2.3.0
pypi
pretix
2.4.0
pypi
pretix
2.5.0
pypi
pretix
2.6.0
1-50 of 186
CVE-2025-14882 | Components Impacted | Sonatype Guide | Sonatype Guide
