5 matches found
CVE-2026-54313 n8n: NoSQL Injection in MongoDB Node Find And Replace Operation
n8n is an open source workflow automation platform. Prior to 2.24.0, an authenticated user with workflow edit access could supply a malicious filter value in the MongoDB node's Find And Replace operation. The value was not validated before being passed to MongoDB as a query filter, allowing...
PT-2026-50179
Name of the Vulnerable Software and Affected Versions n8n versions prior to 2.24.0 Description An authenticated user with workflow edit access can provide a malicious filter value within the MongoDB node's Find And Replace operation. Because the value is not validated before being used as a query...
Malicious code in redshift-darkenergy-mongodb-node-sass (npm)
The package redshift-darkenergy-mongodb-node-sass was found to contain malicious code...
MAL-2025-45779 Malicious code in redshift-darkenergy-mongodb-node-sass (npm)
The package redshift-darkenergy-mongodb-node-sass was found to contain malicious code...
DEBIAN-CVE-2021-32050
Some MongoDB Drivers may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when specific authentication-related commands are executed. Without due care, an application may...