A vulnerability was found in baptisteArno typebot.io up to 3.17.1 and classified as problematic. This vulnerability affects the function validateHttpReqUrl of the file packages/lib/src/ssrf/validateHttpReqUrl.ts of the component SSRF Validator. Executing a manipulation of the argument address can lead to server-side request forgery.

This vulnerability is registered as CVE-2026-49213. It is possible to launch the attack remotely. No exploit is available.