CVE-2026-28445 | baptisteArno typebot.io up to 3.15.x RatingButton cross site scripting

Inserito da Angelo Barbosa | Mag 22, 2026 | CVE

A vulnerability labeled as problematic has been found in baptisteArno typebot.io up to 3.15.x. The affected element is an unknown function of the component RatingButton Component. Such manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2026-28445. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.

CVE-2026-28445 | baptisteArno typebot.io up to 3.15.x RatingButton cross site scripting

Post correlati

CVE-2024-54999 | MonicaHQ 4.1.2 General Information Module last_name injection

CVE-2024-56132 | Progress LoadMaster up to 7.2.60.1 os command injection

CVE-2025-15143 | EyouCMS up to 1.7.6 Backend Template Management FilemanagerLogic.php content sql injection

CVE-2025-15093 | sunkaifei FlyCMS up to abbaa5a8daefb146ad4d61027035026b052cb414 Admin Login IndexAdminController.java redirectUrl cross site scripting (Issue 15)