Security Researcher Exploits XSS Flaw in pretalx to Auto-Accept Conference Talks
A security researcher discovered a critical stored cross-site scripting (XSS) vulnerability (CVE-2026-41241) in pretalx, an open-source tool widely used by tech conferences to manage speaker submissions and schedules. The flaw allowed attackers to inject malicious JavaScript into searchable fields such as submission titles, speaker names, or email addresses which would execute when an organizer conducted a search.
Once triggered, the payload could access the organizer’s CSRF token, enabling authenticated requests on their behalf, including data modification or exfiltration. The vulnerability was patched in pretalx 2026.1.0 in April.
Elad Meged, founding engineer at AI security startup Novee, identified the flaw while preparing conference submissions. Noticing that multiple events including OffensiveCon, TROOPERS, FOSDEM, HEXACON, and Recon used the same pretalx-based system, he tested the exploit by submitting 40 automated proposals under the intentionally bland title "Securing Modern Web Apps." All were accepted, demonstrating the flaw’s potential for abuse.
Meged’s team validated the exploit in a local environment, avoiding live testing on public instances. While no active exploitation was detected, the vulnerability posed a serious risk: organizer-level access could have enabled attackers to alter submissions, impersonate staff, or launch phishing campaigns from trusted conference systems.
The research leveraged AI-assisted tools to scale discovery, fingerprinting vulnerable deployments, and adapt exploit paths across different pretalx versions. Meged emphasized that while the core vulnerability was simple to exploit, automated agentic systems were crucial for mapping internet-wide exposure and managing responsible disclosure.
Tobias Kunze, pretalx’s creator, confirmed receiving 11 security findings from Meged, classifying one as critical and others as non-vulnerability bugs with fixes. The disclosure process was described as professional and collaborative. No evidence suggests the flaw was exploited before Novee’s report.
Hexacon Laboratories cybersecurity rating report: https://www.rankiteo.com/company/hexaconlabs
FOSDEM cybersecurity rating report: https://www.rankiteo.com/company/fosdem
Preconstruct cybersecurity rating report: https://www.rankiteo.com/company/preconstruct
Troopers cybersecurity rating report: https://www.rankiteo.com/company/troopers
"id": "HEXFOSPRETRO1779884685",
"linkid": "hexaconlabs, fosdem, preconstruct, troopers",
"type": "Cyber Attack",
"date": "4/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'OffensiveCon, TROOPERS, FOSDEM, '
'HEXACON, Recon, and other tech '
'conferences using pretalx',
'industry': 'Conference management',
'name': 'pretalx',
'type': 'Open-source software'}],
'attack_vector': 'Malicious JavaScript injection into searchable fields '
'(e.g., submission titles, speaker names, email addresses)',
'data_breach': {'data_exfiltration': 'Potential (not confirmed)',
'sensitivity_of_data': 'High (organizer-level access, '
'submission details)',
'type_of_data_compromised': 'CSRF tokens, organizer-level '
'access credentials, submission '
'data'},
'date_resolved': '2026-04-01',
'description': 'A security researcher discovered a critical stored cross-site '
'scripting (XSS) vulnerability (CVE-2026-41241) in pretalx, an '
'open-source tool used by tech conferences to manage speaker '
'submissions and schedules. The flaw allowed attackers to '
'inject malicious JavaScript into searchable fields, which '
'would execute when an organizer conducted a search. The '
'payload could access the organizer’s CSRF token, enabling '
'authenticated requests on their behalf, including data '
'modification or exfiltration. The vulnerability was patched '
'in pretalx 2026.1.0 in April.',
'impact': {'brand_reputation_impact': 'Potential reputational damage to '
'affected conferences and pretalx',
'data_compromised': 'CSRF tokens, organizer-level access, '
'submission data',
'operational_impact': 'Potential unauthorized modification of '
'submissions, impersonation of staff, or '
'phishing campaigns',
'systems_affected': 'pretalx-based conference management systems'},
'investigation_status': 'Resolved (patch released)',
'lessons_learned': 'Importance of input validation in searchable fields, '
'risks of stored XSS in conference management systems, and '
'the role of AI-assisted tools in scaling security '
'research.',
'motivation': 'Security research and responsible disclosure',
'post_incident_analysis': {'corrective_actions': 'Patch released to sanitize '
'input fields and prevent '
'XSS execution.',
'root_causes': 'Lack of input validation in '
'searchable fields, allowing stored '
'XSS payloads to execute in '
'organizer sessions.'},
'recommendations': 'Conferences using pretalx should update to version '
'2026.1.0 or later, implement input validation, and '
'monitor for unauthorized access. Security researchers '
'should follow responsible disclosure practices.',
'references': [{'source': 'Novee (Elad Meged)'},
{'source': 'pretalx (Tobias Kunze)'}],
'response': {'communication_strategy': 'Responsible disclosure to pretalx '
'maintainers',
'containment_measures': 'Vulnerability patched in pretalx '
'2026.1.0',
'remediation_measures': 'Patch released for CVE-2026-41241'},
'stakeholder_advisories': 'Conferences using pretalx advised to update to the '
'latest version.',
'threat_actor': 'Elad Meged (Security Researcher)',
'title': 'Security Researcher Exploits XSS Flaw in pretalx to Auto-Accept '
'Conference Talks',
'type': 'Stored Cross-Site Scripting (XSS)',
'vulnerability_exploited': 'CVE-2026-41241'}