Threat Intelligence Database

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, a member-level user with editor access to a shared workflow could reference credentials they do not own via specific public API endpoints. Credential ownership checks were only enforced partially leading to cross-user credential access. This issue affects instances where workflow sharing is enabled and at least one workflow has been shared with a member-level user as an Editor. This vulnerability is fixed in 1.123.55, 2.25.7, and 2.26.2.

n8n versions prior to 2.25.7 and 2.26.2 contain a prototype pollution vulnerability that allows crafted public webhook payloads to inject attacker-controlled fields into workflow data. These malicious fields can be processed by downstream nodes, potentially causing workflows to perform unintended actions such as targeting incorrect records or making outbound requests with the workflow owner's credentials. The vulnerability is fixed in versions 2.25.7 and 2.26.2.

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.1, an authenticated user with permission to create or modify workflows and access to a SecurityScorecard credential with limited allowed domains could configure the SecurityScorecard node's report download operation to target an attacker-controlled URL. The node attached the SecurityScorecard API token to the outbound request, causing the credential to be sent to the attacker-controlled host bypassing credential configured limitations and exfiltrating. This vulnerability is fixed in 1.123.55, 2.25.7, and 2.26.1.

n8n is an open source workflow automation platform. Prior to 1.123.48, 2.21.8, and 2.22.4, an authenticated user with permission to create or modify workflows could supply a local filesystem path as the source repository in the Git node's Clone operation, or as the target repository in the Push operation, bypassing the N8N_RESTRICT_FILE_ACCESS_TO file sandbox. This allowed the contents of any local git repository accessible to the n8n process to be cloned into an allowed path and read, circumventing the access restrictions that correctly blocked direct file reads to the same paths. This vulnerability is fixed in 1.123.48, 2.21.8, and 2.22.4.

A vulnerability in n8n workflow automation platform prior to versions 1.123.43, 2.22.1, and 2.20.7 allows an authenticated user with read-only access to a shared OAuth credential to overwrite stored token material. This occurs because the OAuth reconnect endpoints incorrectly authorize using credential:read instead of credential:update. Exploitation enables workflows to run under the attacker's OAuth identity, potentially leading to data exfiltration and persistent takeover of shared integrations. The issue is fixed in the stated versions.

n8n, an open source workflow automation platform, has a critical prototype pollution vulnerability (CVE-2026-44789) in versions prior to 1.123.43, 2.22.1, and 2.20.7. An authenticated user with permission to create or modify workflows can exploit an unvalidated pagination parameter in the HTTP Request node to achieve global prototype pollution. This vulnerability can potentially lead to remote code execution (RCE) when combined with other techniques. The issue is fixed in versions 1.123.43, 2.22.1, and 2.20.7.

n8n is an open source workflow automation platform. Prior to 2.24.0, an authenticated user with workflow edit access could supply a malicious filter value in the MongoDB node's Find And Replace operation. The value was not validated before being passed to MongoDB as a query filter, allowing unintended documents to be matched and overwritten with attacker-controlled content. This vulnerability is fixed in 2.24.0.

n8n is an open source workflow automation platform. Prior to 2.24.0, an authenticated user with permission to create or modify workflows could achieve global prototype pollution via the Microsoft SQL node by supplying a crafted value as the table parameter. This pollutes Object.prototype process-wide for the lifetime of the n8n server process, causing application-wide validation failures and rendering the n8n instance completely non-functional until restarted. This vulnerability is fixed in 2.24.0.

n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows could supply a crafted parameters to the TimescaleDB and/or legacy Postgres v1 node's allowing arbitrary SQL to be injected and executed against the connected database within the privileges of the configured database account. This vulnerability is fixed in 2.25.7 and 2.26.2.

A reflected cross-site scripting (XSS) vulnerability exists in n8n prior to version 2.24.0. This occurs in the Meta and Microsoft Teams trigger nodes where a query parameter is reflected in the HTTP response without proper sanitization or Content-Security-Policy headers. The vulnerability allows a logged-in user to be exposed to XSS attacks when visiting a crafted URL. The issue is fixed in version 2.24.0.