n8n
Cloud & SaaSoss-project
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting n8n.
- CVE-2026-56777n8n - AST Validator Bypass in Python Code Node5.0
- CVE-2026-56356n8n - Stored Cross-Site Scripting in Chat Trigger Node Custom CSS Field5.4
- CVE-2026-56350n8n - SSO Enforcement Bypass via API6.3
- CVE-2026-56358n8n - Stored Cross-Site Scripting in Form Trigger Node5.4
- CVE-2026-56351n8n - SQL Injection in MySQL, PostgreSQL, and Microsoft SQL Nodes8.2
- CVE-2026-44792n8n: Source Control Pull SQL Injection9.0
- CVE-2026-44791n8n: XML Node Prototype Pollution Patch Bypass9.9
- CVE-2026-44790n8n: Arbitrary File Read via Git Node8.8
- CVE-2026-44789n8n: HTTP Request Node Pagination Prototype Pollution to RCE9.9
- CVE-2026-45732n8n: Cross-user Authorization Bypass in Dynamic Credential OAuth Endpoints8.1
- CVE-2026-49444n8n: Python sandbox escape8.5
- CVE-2026-49465n8n: Git Node Clone and Push Operations Bypass File Sandbox7.7
- CVE-2026-54304n8n: SecurityScorecard Node Leaks API Token to User-Controlled Host7.7
- CVE-2026-54307n8n: Credential Exfiltration via Permission Bypass9.6
- CVE-2026-54302n8n: Stored XSS in Chat Trigger Node5.4