Data Exposure in TypeBot Chatbot Builder by Baptiste Arno
CVE-2026-39967

3.1LOW

Key Information:

Vendor

Baptistearno

Status
Typebot.io
Vendor
CVE Published:
22 May 2026

What is CVE-2026-39967?

The TypeBot chatbot builder tool, up to version 3.15.2, is susceptible to a data exposure vulnerability, allowing authenticated users to access responses and variable values from different chat sessions. This occurs when an attacker can supply a foreign resultId to the startChat endpoint, bypassing expected security measures. The risk is heightened when certain features, like rememberUser, are enabled, potentially revealing personally identifiable information (PII) such as names, emails, and phone numbers. This issue has been addressed in the latest release, version 3.16.0.

Affected Version(s)

typebot.io < 3.16.0

References

https://github.com/baptisteArno/typebot.io/security/advis...
x_refsource_CONFIRM
https://github.com/baptisteArno/typebot.io/commit/7316263...
x_refsource_MISC
https://github.com/baptisteArno/typebot.io/releases/tag/v...
x_refsource_MISC

CVSS V3.1

Score:
3.1
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.