Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2026/05/05 8:21 p.m.9 views

CVE-2026-42229

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the SeaTable node's row:search and row:get operations allowed user-controlled input to be concatenated directly into SQL query strings without escaping or parameterization. In workflows...

8.8CVSS5.7AI score0.00342EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 7:16 p.m.13 views

CVE-2026-42229

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the SeaTable node's row:search and row:get operations allowed user-controlled input to be concatenated directly into SQL query strings without escaping or parameterization. In workflows...

8.8CVSS0.00342EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/04 6:27 p.m.3 views

CVE-2026-42229

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the SeaTable node's row:search and row:get operations allowed user-controlled input to be concatenated directly into SQL query strings without escaping or parameterization. In workflows...

5.3CVSS5.8AI score0.00342EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/04 6:27 p.m.21 views

CVE-2026-42229

CVE-2026-42229 describes an SQL injection in the SeaTable node of the open-source n8n workflow automation platform. The vulnerability affects SeaTable node operations row:search and row:get when user-controlled input is concatenated into SQL strings without proper escaping/parameterization. Explo...

8.8CVSS5.8AI score0.00342EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/05/04 6:27 p.m.9 views

EUVD-2026-27098

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the SeaTable node's row:search and row:get operations allowed user-controlled input to be concatenated directly into SQL query strings without escaping or parameterization. In workflows...

5.3CVSS5.8AI score0.00342EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/04 6:27 p.m.4 views

CVE-2026-42229 n8n: SQL Injection in SeaTable Node

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the SeaTable node's row:search and row:get operations allowed user-controlled input to be concatenated directly into SQL query strings without escaping or parameterization. In workflows...

5.3CVSS5.8AI score0.00342EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/04 6:27 p.m.34 views

CVE-2026-42229 n8n: SQL Injection in SeaTable Node

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the SeaTable node's row:search and row:get operations allowed user-controlled input to be concatenated directly into SQL query strings without escaping or parameterization. In workflows...

5.3CVSS0.00342EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.14 views

n8n SQL注入漏洞

n8n is an open-source, scalable workflow automation tool developed by n8n. Versions of n8n prior to 1.123.32, 2.17.4, and 2.18.1 contained SQL injection vulnerabilities. These vulnerabilities stemmed from the use of row:search and row:get operations in the SeaTable node, where user-controlled inp...

8.8CVSS5.9AI score0.00342EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.11 views

PT-2026-36901

Name of the Vulnerable Software and Affected Versions n8n versions prior to 1.123.32 n8n versions prior to 2.17.4 n8n versions prior to 2.18.1 Description A flaw in the SeaTable node's 'row:search' and 'row:get' operations allows user-controlled input to be concatenated directly into SQL query...

5.3CVSS5.8AI score0.00342EPSS
Exploits0References5
Snyk
Snyk
added 2026/04/29 9:10 p.m.5 views

SQL Injection

Overview n8n-nodes-base is a Base nodes of n8n Affected versions of this package are vulnerable to SQL Injection via the row:search and row:get operations in the SeaTable node when user-controlled input is passed through expressions into the searchTerm or rowId parameters. An attacker can access...

8.8CVSS5.9AI score0.00342EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/04/29 9:10 p.m.8 views

n8n has SQL Injection in SeaTable Node

Impact A flaw in the SeaTable node's row:search and row:get operations allowed user-controlled input to be concatenated directly into SQL query strings without escaping or parameterization. In workflows where external user input is passed via expressions into the SeaTable node's search or row...

8.8CVSS5.7AI score0.00342EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/04/29 9:10 p.m.8 views

GHSA-MP4J-H6GH-F6MP n8n has SQL Injection in SeaTable Node

Impact A flaw in the SeaTable node's row:search and row:get operations allowed user-controlled input to be concatenated directly into SQL query strings without escaping or parameterization. In workflows where external user input is passed via expressions into the SeaTable node's search or row...

6.8CVSS5.8AI score0.00342EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/03/25 6:31 p.m.7 views

@seafile/sdoc-editor (=0.2.13), @seafile/seafile-sdoc-editor (>=2.0.43-test-0.0.4 <=2.0.45-test-0.0.4) +1 more potentially affected by CVE-2026-30587 via @seafile/sdoc-editor (>=0.2.12 <=2.0.128-test-0.0.2)

@seafile/sdoc-editor NPM version =0.2.12, =2.0.43-test-0.0.4, =6.0.19, =6.0.35 Source cves: CVE-2026-30587 Source advisory: OSV:GHSA-RQJ3-X344-QVXC...

8.7CVSS5.7AI score0.00278EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/02/13 9:4 p.m.11 views

@anngdinh/remote-mcp-server-authless (=0.0.0), @aredes.me/mcp-camara (=1.0.6) +141 more potentially affected by unknown CVE via agents (>=0.0.100 <=0.2.35)

agents NPM version =0.0.100, =0.4.0, =1.1.1, =0.1.0, =0.2.0, =0.1.0, =0.0.1, =2.1.6, =0.0.1, =1.1.1, =1.3.4 and more Source cves: unknown CVE Source advisory: SNYK:JS-AGENTS-15282793...

5.7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/05/23 1:36 a.m.5 views

Malicious code in seatable (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 534db55497a58d9007903dfa5dfe418fd37c2ab3ef4a8a47567e44e3a7ada101 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References4
OSV
OSV
added 2025/05/23 1:36 a.m.8 views

MAL-2025-4400 Malicious code in seatable (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 534db55497a58d9007903dfa5dfe418fd37c2ab3ef4a8a47567e44e3a7ada101 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References4
Rows per page
Query Builder