Server-Side Request Forgery Vulnerability in Typebot by Baptiste Arno
CVE-2026-33712

10CRITICAL

Key Information:

Vendor: Baptistearno
Status: Typebot.io
Vendor: CVE Published:; 22 May 2026

🔔 Create Baptistearno Vulnerability Alert

What is CVE-2026-33712?

Typebot, a versatile chatbot builder, is vulnerable to Server-Side Request Forgery (SSRF) affecting versions 3.15.2 and earlier. This vulnerability allows unauthenticated users to exploit the preview chat endpoint, /api/v1/typebots/{typebotId}/preview/startChat, by submitting a crafted typebot definition containing server-side code blocks. The fetch function within the isolated-vm sandbox invokes Node.js native fetch without validating the HTTP request URL, effectively bypassing existing SSRF protections. If exploited, this vulnerability can lead to severe consequences, including the theft of cloud credentials, unauthorized access to internal networks, and potential data exfiltration for self-hosted Typebot instances and hosted services. Users are advised to upgrade to version 3.16.0, where the issue has been resolved.

Affected Version(s)

typebot.io < 3.16.0

References

https://github.com/baptisteArno/typebot.io/security/advis...

x_refsource_CONFIRM

https://github.com/baptisteArno/typebot.io/releases/tag/v...

x_refsource_MISC

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 22, 2026
Vulnerability Reserved
Mar 23, 2026

CVE-2026-33712 Data

JSON