Lucene search
K

8 matches found

Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.9 views

PT-2026-36901

Name of the Vulnerable Software and Affected Versions n8n versions prior to 1.123.32 n8n versions prior to 2.17.4 n8n versions prior to 2.18.1 Description A flaw in the SeaTable node's 'row:search' and 'row:get' operations allows user-controlled input to be concatenated directly into SQL query...

5.3CVSS5.8AI score0.00342EPSS
Exploits0References5
Snyk
Snyk
added 2026/04/29 9:22 p.m.14 views

Missing Authorization

Overview n8n is a n8n Workflow Automation Tool Affected versions of this package are vulnerable to Missing Authorization via the dynamic-node-parameters endpoints. An attacker can access and exfiltrate sensitive credentials belonging to other users by supplying a foreign credential ID in the...

9.1CVSS5.9AI score0.0026EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.6 views

PT-2026-33010

🔒 CyberSecurity CVE-2024-44738 & CVE-2024-44337: n8n Workflow Automation Critical Flaws — Detec… "Security Arsenal’s analysis of the recent Pillar Security disclosure regarding n8n…" 🔗 https://t.co/U8qg6uYpWr CyberSecurity ThreatIntel alertfatigue triage alertmonitor...

5.1CVSS6.6AI score0.00501EPSS
Exploits1References1
EUVD
EUVD
added 2026/02/25 9:54 p.m.7 views

EUVD-2026-8760

n8n has Arbitrary Command Execution via File Write and Git Operations...

9CVSS5.4AI score0.00718EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2026/02/04 6:38 p.m.7 views

@regis-samurai/n8n (>=0.216.1 <=0.219.1), n8n-nodes-accelo (>=0.1.0 <=0.1.9) +11 more potentially affected by CVE-2026-25053 via n8n (>=0.138.0 <=0.93.0)

n8n NPM version =0.138.0, =0.216.1, =0.1.0, =0.18.0, =0.1.0, =0.1.0, =0.2.14, =0.1.0, =0.1.0, =0.0.2, =0.0.2, =1.1.3 Source cves: CVE-2026-25053 Source advisory: OSV:GHSA-9G95-QF3F-GGRW...

9.9CVSS6AI score0.00568EPSS
Exploits0
OSV
OSV
added 2026/01/27 3:30 p.m.6 views

GHSA-5XRP-6693-JJX9 n8n Unsafe Workflow Expression Evaluation Allows Remote Code Execution

n8n contains a critical Remote Code Execution RCE vulnerability in its workflow Expression evaluation system. Expressions supplied by authenticated users during workflow configuration may be evaluated in an execution context that is not sufficiently isolated from the underlying runtime. An...

9.9CVSS6.3AI score0.18071EPSS
Exploits2References6
CNNVD
CNNVD
added 2026/01/08 12:0 a.m.4 views

n8n 代码问题漏洞

n8n is a scalable workflow automation tool from n8n open source. A code issue vulnerability exists in n8n 0.121.2 and prior versions that originates from an authenticated attacker who can execute malicious code that could lead to a full crack...

9.9CVSS7.1AI score0.05258EPSS
Exploits1References2
EUVD
EUVD
added 2026/01/07 7:20 p.m.5 views

EUVD-2026-1187

n8n Vulnerable to Unauthenticated File Access via Improper Webhook Request Handling...

10CVSS6.7AI score0.71647EPSS
Exploits18References2
Rows per page
Query Builder