CVE-2026-25541 affecting package rust for versions less than 1.90.0-6

CVE-2026-25541 affecting package rust for versions less than 1.90.0-6. A patched version of the package is available...

CVE-2025-68114 affecting package rust for versions less than 1.90.0-4

CVE-2025-68114 affecting package rust for versions less than 1.90.0-4. A patched version of the package is available...

CVE-2025-46343

n8n is a workflow automation platform. Prior to version 1.90.0, n8n is vulnerable to stored cross-site scripting XSS through the attachments view endpoint. n8n workflows can store and serve binary files, which are accessible to authenticated users. However, there is no restriction on the MIME typ...

CVE-2025-46343

CVE-2025-46343 affects n8n prior to 1.90.0. The issue is stored XSS via the attachments view endpoint where uploaded binaries are served with an attacker-controlled MIME type. An authenticated member could upload an HTML file and, when a user requests the binary with MIME type text/html, the scri...

CVE-2025-46343 n8n Vulnerable to Stored XSS through Attachments View Endpoint

n8n is a workflow automation platform. Prior to version 1.90.0, n8n is vulnerable to stored cross-site scripting XSS through the attachments view endpoint. n8n workflows can store and serve binary files, which are accessible to authenticated users. However, there is no restriction on the MIME typ...

n8n 跨站脚本漏洞

n8n is a scalable workflow automation tool from n8n open source. A cross-site scripting vulnerability exists in n8n versions prior to 1.90.0, which stems from the presence of a stored cross-site scripting attack on an attachment view endpoint...