4 matches found
CVE-2025-71380
The Execute Command node in n8n allows authenticated users to execute arbitrary commands on the host system where n8n runs. Attackers with user access or compromised credentials can exploit this node to run malicious commands, potentially leading to data exfiltration, service disruption, or...
PT-2026-50178
Name of the Vulnerable Software and Affected Versions n8n versions prior to 2.24.0 Description An authenticated user with permissions to create or modify workflows can achieve global prototype pollution through the Microsoft SQL node. By providing a crafted value to the table parameter, the...
n8n 安全漏洞
n8n is an open-source, scalable workflow automation tool developed by n8n. Versions of n8n prior to 2.14.1, 2.13.3, and 1.123.27 contained security vulnerabilities. These vulnerabilities were due to defects in the authorization chain and bypasses by the credential permission checker, which could...
GHSA-HV53-3329-VMRM
creationtimestamp| type| source ---|---|--- 2026-02-05 15:56:30+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/n8n-security-advisory-av26-091...