Vulnerabilities and security researches forhellobar hellobar

Apr 14, 2026

CVE, Research URL: CVE-2026-39666
Home page URL: Security reports for Hello Bar
Application: Hello Bar
Date: Apr 08, 2026
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in telepathy Hello Bar Popup Builder hellobar allows DOM-Based XSS.This issue affects Hello Bar Popup Builder: from n/a through <= 1.5.1.
Affected versions: max 1.5.1.
Status: vulnerable