CVE-2026-28509 – LangBot versions before 4.8.7 have a cross-site... (How to Fix)

Q: What is the severity of CVE-2026-28509?

CVE-2026-28509 has a CVSS score of 6.3 (MEDIUM). LangBot versions before 4.8.7 have a cross-site scripting (XSS) vulnerability where the web UI renders user-supplied raw HTML without proper sanitization. This allows attackers to inject malicious scripts that execute in victims' browsers. All users of LangBot versions before 4.8.7 are affected.

📋 TL;DR

LangBot versions before 4.8.7 have a cross-site scripting (XSS) vulnerability where the web UI renders user-supplied raw HTML without proper sanitization. This allows attackers to inject malicious scripts that execute in victims' browsers. All users of LangBot versions before 4.8.7 are affected.

💻 Affected Systems

Products:

LangBot

Versions: All versions before 4.8.7

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Affects the web UI component that uses rehypeRaw for HTML rendering.

📦 What is this software?

Langbot by Langbot

View all CVEs affecting Langbot →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could steal session cookies, perform actions as authenticated users, redirect to malicious sites, or install malware on user systems.

🟠

Likely Case

Session hijacking, credential theft, or defacement of the LangBot interface through injected scripts.

🟢

If Mitigated

Limited impact with proper content security policies and input validation, but still a security risk.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

XSS vulnerabilities typically have low exploitation complexity when user input is directly rendered as HTML.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 4.8.7

Vendor Advisory: https://github.com/langbot-app/LangBot/security/advisories/GHSA-w8gq-g4pc-xh3h

Restart Required: Yes

Instructions:

1. Update LangBot to version 4.8.7 or later. 2. Restart the LangBot service. 3. Verify the update was successful.

🔧 Temporary Workarounds

Implement Content Security Policy

all

Add a strict Content Security Policy header to limit script execution sources

Add 'Content-Security-Policy: default-src 'self'; script-src 'self'' to HTTP headers

Input Sanitization

all

Implement server-side input validation and sanitization for all user inputs

🧯 If You Can't Patch

Disable or restrict access to the vulnerable web UI component
Implement web application firewall (WAF) rules to block XSS payloads

🔍 How to Verify

Check if Vulnerable:

Check LangBot version. If version is below 4.8.7, the system is vulnerable.

Check Version:

Check LangBot configuration or admin interface for version information

Verify Fix Applied:

Verify LangBot version is 4.8.7 or higher and test XSS payloads are properly sanitized.

📡 Detection & Monitoring

Log Indicators:

Unusual HTML/JavaScript in user input logs
Multiple failed XSS attempts

Network Indicators:

HTTP requests containing script tags or JavaScript in parameters

SIEM Query:

web_requests WHERE (request_uri CONTAINS '<script' OR parameters CONTAINS 'javascript:')

📊 Metadata

CVE ID: CVE-2026-28509

CVSS v3 Score: 6.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N

CWE: CWE-79

Published: March 6, 2026

Last Updated: March 16, 2026

🔗 References

https://github.com/langbot-app/LangBot/commit/614621ab7b84fe50da3c6137705cde5a99429866 Patch
https://github.com/langbot-app/LangBot/security/advisories/GHSA-w8gq-g4pc-xh3h Exploit,Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-28509, you might also want to check these: