CVE-2026-57536
Vulnerability Description
Our payment integration with Mollie did not properly validate payment
status responses. An attacker could use a successful payment status
response from one payment and supply it to the system for a different
payment, gaining access to multiple valid tickets with only one payment.
status responses. An attacker could use a successful payment status
response from one payment and supply it to the system for a different
payment, gaining access to multiple valid tickets with only one payment.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-841
Source
NVD
Vendor
pretix
Product
pretix-mollie
Discussion (0)
Add Comment
No comments yet. Be the first!