1060 matches found
Cross-site Scripting (XSS)
Overview n8n-core is a Core functionality of n8n Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper enforcement of Content Security Policy in webhook response handling. An attacker can execute unauthorized scripts with same-origin privileges by crafting...
CVE-2026-25054
n8n is an open source workflow automation platform. Prior to versions 1.123.9 and 2.2.1, a Cross-Site Scripting XSS vulnerability existed in a markdown rendering component used in n8n's interface, including workflow sticky notes and other areas that support markdown content. An authenticated user...
EUVD-2026-5418
n8n is an open source workflow automation platform. Prior to versions 1.123.10 and 2.5.0, vulnerabilities in the Git node allowed authenticated users with permission to create or modify workflows to execute arbitrary system commands or read arbitrary files on the n8n host. This issue has been...
GO-2026-4350 Argo Workflows affected by stored XSS in the artifact directory listing in github.com/argoproj/argo-workflows
Argo Workflows affected by stored XSS in the artifact directory listing in github.com/argoproj/argo-workflows...
GHSA-P5WG-G6QR-C7CG vulnerabilities
Vulnerabilities for packages: vitess, prism, argo-workflows...
CVE-2025-50537 vulnerabilities
Vulnerabilities for packages: vitess, prism, argo-workflows...
CVE-2025-50537 vulnerabilities
Vulnerabilities for packages: langfuse-fips, vitess, langfuse, argo-workflows, arangodb, prism...
GHSA-P5WG-G6QR-C7CG vulnerabilities
Vulnerabilities for packages: langfuse-fips, vitess, langfuse, argo-workflows, arangodb, prism...
CLEANSTART-2026-QM19832 Moby is an open source container framework developed by Docker Inc
Multiple security vulnerabilities affect the argo-workflows-fips package. Moby is an open source container framework developed by Docker Inc. See references for individual vulnerability details...
CLEANSTART-2026-XR17407 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption
Multiple security vulnerabilities affect the argo-workflows-fips package. SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. See references for individual vulnerability...
CLEANSTART-2026-SO95938 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption
Multiple security vulnerabilities affect the argo-workflows-fips package. SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. See references for individual vulnerability...
CLEANSTART-2026-UZ73015 Cancelling a query (e
Multiple security vulnerabilities affect the argo-workflows-fips package. Cancelling a query e. See references for individual vulnerability details...
CLEANSTART-2026-PK69606 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption
Multiple security vulnerabilities affect the argo-workflows-fips package. SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. See references for individual vulnerability...
CLEANSTART-2026-ZM51114 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption
Multiple security vulnerabilities affect the argo-workflows-fips package. SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. See references for individual vulnerability...
CLEANSTART-2026-PS30901 Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes
Multiple security vulnerabilities affect the argo-workflows-fips package. Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. See references for individual vulnerability details...
CLEANSTART-2026-WP20592 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption
Multiple security vulnerabilities affect the argo-workflows-fips package. SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. See references for individual vulnerability...
CLEANSTART-2026-WA03785 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption
Multiple security vulnerabilities affect the argo-workflows-fips package. SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. See references for individual vulnerability...
CLEANSTART-2026-WE92783 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption
Multiple security vulnerabilities affect the argo-workflows-fips package. SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. See references for individual vulnerability...
CLEANSTART-2026-QV26039 Within HostnameError
Security vulnerability affects the argo-workflows package. Within HostnameError...
CLEANSTART-2026-MF93723 Within HostnameError
Multiple security vulnerabilities affect the argo-workflows package. Within HostnameError. See references for individual vulnerability details...