Lucene search
K

CVE-2026-54302

🗓️ 23 Jun 2026 15:46:21Reported by GitHub_MType 
cve
 cve
🔗 web.nvd.nist.gov👁 13 Views

CVE-2026-54302: Stored XSS in n8n Chat Trigger lets authenticated editors inject JavaScript via webhookId; fixed.

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-54302
23 Jun 202615:46
attackerkb
Cvelist
CVE-2026-54302 n8n: Stored XSS in Chat Trigger Node
23 Jun 202615:46
cvelist
EUVD
EUVD-2026-38477
23 Jun 202615:46
euvd
Github Security Blog
n8n: Stored XSS in Chat Trigger Node
16 Jun 202622:39
github
NCSC
Vulnerabilities handled in the n8n workflow automation platform
29 Jun 202608:02
ncsc
NVD
CVE-2026-54302
23 Jun 202617:17
nvd
OSV
GHSA-42H7-M79W-WVG5 n8n: Stored XSS in Chat Trigger Node
16 Jun 202622:39
osv
OSV
MINI-G5XX-XGGH-G95C
17 Jun 202616:23
osv
OSV
ROOT-APP-NPM-CVE-2026-54302 CVE-2026-54302 in @rootio/n8n - Patched by Root
30 Jun 202609:33
osv
Patchstack
NPM: n8n: Stored XSS in Chat Trigger Node
16 Jun 202622:39
patchstack
Rows per page
NVD
Vulners
Node
n8nn8nRange<1.123.55node.js
OR
n8nn8nRange2.0.02.25.7node.js
OR
n8nn8nRange2.26.02.26.2node.js
[
  {
    "vendor": "n8n-io",
    "product": "n8n",
    "versions": [
      {
        "version": "< 1.123.55",
        "status": "affected"
      },
      {
        "version": ">= 2.0.0-rc.0, < 2.25.7",
        "status": "affected"
      },
      {
        "version": ">= 2.26.0, < 2.26.2",
        "status": "affected"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

26 Jun 2026 02:24Current
6Medium risk
Vulners AI Score6
CVSS 3.15.4
CVSS 47
EPSS0.0021
SSVC
13