yes but they lose authenticity!
they at minimum are also exposing themselves to a plaintext derivation cryptanalysis attack also, if they don't actually reveal the secret on one side of it
the event has two pubkeys, the sender and receiver
the message is encrypted using one of those pubkeys, and the other is the secret of the other pubkey