CVE-2026-39964 | baptisteArno typebot.io up to 3.15.x packages/embeds/js cross site scripting

Inserito da Angelo Barbosa | Mag 22, 2026 | CVE

A vulnerability categorized as problematic has been discovered in baptisteArno typebot.io up to 3.15.x. Affected is an unknown function of the file packages/embeds/js. Executing a manipulation can lead to cross site scripting.

The identification of this vulnerability is CVE-2026-39964. The attack may be launched remotely. There is no exploit available.

It is advisable to upgrade the affected component.

CVE-2026-39964 | baptisteArno typebot.io up to 3.15.x packages/embeds/js cross site scripting

Post correlati

CVE-2025-5049 | FreeFloat FTP Server 1.0 APPEND Command buffer overflow

CVE-2026-31732 | Linux Kernel up to 6.18.21/6.19.11 gpio gpiochip_add_data_with_key double free

CVE-2023-6760 | Thecosy IceCMS up to 2.0.1 user session

CVE-2024-22320 | IBM Operational Decision Manager up to 8.12.0.1 Request deserialization (XFDB-279146)