CVE-2026-28444 | baptisteArno typebot.io up to 3.15.x getResultLogs API Endpoint authorization

Inserito da Angelo Barbosa | Mag 22, 2026 | CVE

A vulnerability marked as problematic has been reported in baptisteArno typebot.io up to 3.15.x. The impacted element is an unknown function of the component getResultLogs API Endpoint. Performing a manipulation results in authorization bypass.

This vulnerability is cataloged as CVE-2026-28444. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2026-28444 | baptisteArno typebot.io up to 3.15.x getResultLogs API Endpoint authorization

Post correlati

CVE-2023-50918 | MISP up to 2.4.181 Audit Log ACL AuditLogsController.php Privilege Escalation

CVE-2026-31690 | Linux Kernel up to 6.18.22/6.19.12 cpu_to_be16 buffer overflow

CVE-2025-48259 | Juan Carlos WP Mapa Politico España Plugin up to 3.8.0 on WordPress cross-site request forgery

CVE-2024-5881 | Webico Slider Flatsome Addons Plugin up to 2.0.1 on WordPress Shortcode wbc_image cross site scripting