8 matches found
CVE-2023-27564
The n8n package 0.218.0 for Node.js allows Information Disclosure...
Exploit for Exposure of Resource to Wrong Sphere in N8N
Exploit for CVE-2023-27564 This vulnerability allows anonymou...
n8n-nodes-accelo (>=0.1.0 <=0.1.9), n8n-nodes-closeio (=0.1.0) +7 more potentially affected by CVE-2023-27564 via n8n (>=0.138.0 <=0.214.5)
n8n NPM version =0.138.0, =0.1.0, =0.18.0, =0.1.0, =0.1.0, =0.2.14, =0.1.0, =0.1.0, =0.1.7 Source cves: CVE-2023-27564 Source advisory: OSV:GHSA-R9XW-P7WJ-W792...
CVE-2023-27564
The n8n package 0.218.0 for Node.js allows Information Disclosure...
CVE-2023-27564
The n8n package 0.218.0 for Node.js allows Information Disclosure...
CVE-2023-27564
The n8n package 0.218.0 for Node.js allows Information Disclosure...
CVE-2023-27564
The n8n package 0.218.0 for Node.js allows Information Disclosure...
CVE-2023-27564
The CVE relates to the n8n package for Node.js (versions around 0.216.x–0.218.0) and is an Information Disclosure flaw. A PoC/exploit exists showing anonymous file read. Mitigation varies by source, but PT-Security recommends upgrading to 0.216.1 or later; other advisories reference 0.218.0 as vu...