npm package
n8n
pkg:npm/n8n
Vulnerabilities (67)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-25054 | — | >= 2.0.0, < 2.2.1 | 2.2.1 | Feb 4, 2026 | n8n is an open source workflow automation platform. Prior to versions 1.123.9 and 2.2.1, a Cross-Site Scripting (XSS) vulnerability existed in a markdown rendering component used in n8n's interface, including workflow sticky notes and other areas that support markdown content. An | ||
| CVE-2026-25053 | — | >= 2.0.0, < 2.5.0 | 2.5.0 | Feb 4, 2026 | n8n is an open source workflow automation platform. Prior to versions 1.123.10 and 2.5.0, vulnerabilities in the Git node allowed authenticated users with permission to create or modify workflows to execute arbitrary system commands or read arbitrary files on the n8n host. This i | ||
| CVE-2026-25052 | — | >= 2.0.0, < 2.5.0 | 2.5.0 | Feb 4, 2026 | n8n is an open source workflow automation platform. Prior to versions 1.123.18 and 2.5.0, a vulnerability in the file access controls allows authenticated users with permission to create or modify workflows to read sensitive files from the n8n host system. This can be exploited t | ||
| CVE-2026-25051 | — | >= 1.123.0, < 1.123.2 | 1.123.2 | Feb 4, 2026 | n8n is an open source workflow automation platform. Prior to version 1.123.2, a Cross-Site Scripting (XSS) vulnerability has been identified in the handling of webhook responses and related HTTP endpoints. Under certain conditions, the Content Security Policy (CSP) sandbox protec | ||
| CVE-2025-61917 | — | >= 1.65.0, < 1.114.3 | 1.114.3 | Feb 4, 2026 | n8n is an open source workflow automation platform. From version 1.65.0 to before 1.114.3, the use of Buffer.allocUnsafe() and Buffer.allocUnsafeSlow() in the task runner allowed untrusted code to allocate uninitialized memory. Such uninitialized buffers could contain residual da | ||
| CVE-2026-25049 | — | < 1.123.17 | 1.123.17 | Feb 4, 2026 | n8n is an open source workflow automation platform. Prior to versions 1.123.17 and 2.5.2, an authenticated user with permission to create or modify workflows could abuse crafted expressions in workflow parameters to trigger unintended system command execution on the host running | ||
| CVE-2026-1470 | — | < 1.123.17 | 1.123.17 | Jan 27, 2026 | n8n contains a critical Remote Code Execution (RCE) vulnerability in its workflow Expression evaluation system. Expressions supplied by authenticated users during workflow configuration may be evaluated in an execution context that is not sufficiently isolated from the underlying | ||
| CVE-2025-68949 | — | >= 1.36.0, < 2.2.0 | 2.2.0 | Jan 13, 2026 | n8n is an open source workflow automation platform. From 1.36.0 to before 2.2.0, the Webhook node’s IP whitelist validation performed partial string matching instead of exact IP comparison. As a result, an incoming request could be accepted if the source IP address merely contain | ||
| CVE-2026-21894 | — | >= 0.150.0, < 2.2.2 | 2.2.2 | Jan 8, 2026 | n8n is an open source workflow automation platform. In versions from 0.150.0 to before 2.2.2, an authentication bypass vulnerability in the Stripe Trigger node allows unauthenticated parties to trigger workflows by sending forged Stripe webhook events. The Stripe Trigger creates | ||
| CVE-2026-21877 | — | >= 0.123.0, < 1.121.3 | 1.121.3 | Jan 8, 2026 | n8n is an open source workflow automation platform. In versions 0.121.2 and below, an authenticated attacker may be able to execute malicious code using the n8n service. This could result in full compromise and can impact both self-hosted and n8n Cloud instances. This issue is fi | ||
| CVE-2026-21858 | — | >= 1.65.0, < 1.121.0 | 1.121.0 | Jan 7, 2026 | n8n is an open source workflow automation platform. Versions starting with 1.65.0 and below 1.121.0 enable an attacker to access files on the underlying server through execution of certain form-based workflows. A vulnerable workflow could grant access to an unauthenticated remote | ||
| CVE-2025-68697 | — | >= 1.2.1, < 2.0.0 | 2.0.0 | Dec 26, 2025 | n8n is an open source workflow automation platform. Prior to version 2.0.0, in self-hosted n8n instances where the Code node runs in legacy (non-task-runner) JavaScript execution mode, authenticated users with workflow editing access can invoke internal helper functions from with | ||
| CVE-2025-68668 | — | >= 1.0.0, < 2.0.0 | 2.0.0 | Dec 26, 2025 | n8n is an open source workflow automation platform. From version 1.0.0 to before 2.0.0, a sandbox bypass vulnerability exists in the Python Code Node that uses Pyodide. An authenticated user with permission to create or modify workflows can exploit this vulnerability to execute a | ||
| CVE-2025-61914 | — | < 1.114.0 | 1.114.0 | Dec 26, 2025 | n8n is an open source workflow automation platform. Prior to version 1.114.0, a stored Cross-Site Scripting (XSS) vulnerability may occur in n8n when using the “Respond to Webhook” node. When this node responds with HTML content containing executable scripts, the payload may exec | ||
| CVE-2025-68613 | — | KEV | >= 0.211.0, < 1.120.4 | 1.120.4 | Dec 19, 2025 | n8n is an open source workflow automation platform. Versions starting with 0.211.0 and prior to 1.120.4, 1.121.1, and 1.122.0 contain a critical Remote Code Execution (RCE) vulnerability in their workflow expression evaluation system. Under certain conditions, expressions supplie | |
| CVE-2025-65964 | — | >= 0.123.1, < 1.119.2 | 1.119.2 | Dec 8, 2025 | n8n is an open source workflow automation platform. Versions 0.123.1 through 1.119.1 do not have adequate protections to prevent RCE through the project's pre-commit hooks. The Add Config operation allows workflows to set arbitrary Git configuration values, including core.hooksPa | ||
| CVE-2025-62726 | — | < 1.113.0 | 1.113.0 | Oct 30, 2025 | n8n is an open source workflow automation platform. Prior to 1.113.0, a remote code execution vulnerability exists in the Git Node component available in both Cloud and Self-Hosted versions of n8n. When a malicious actor clones a remote repository containing a pre-commit hook, th | ||
| CVE-2025-58177 | — | >= 1.24.0, < 1.107.0 | 1.107.0 | Sep 15, 2025 | n8n is an open source workflow automation platform. From 1.24.0 to before 1.107.0, there is a stored cross-site scripting (XSS) vulnerability in @n8n/n8n-nodes-langchain.chatTrigger. An authorized user can configure the LangChain Chat Trigger node with malicious JavaScript in the | ||
| CVE-2025-57749 | — | < 1.106.0 | 1.106.0 | Aug 20, 2025 | n8n is a workflow automation platform. Before 1.106.0, a symlink traversal vulnerability was discovered in the Read/Write File node in n8n. While the node attempts to restrict access to sensitive directories and files, it does not properly account for symbolic links (symlinks). A | ||
| CVE-2025-52478 | — | >= 1.77.0, < 1.98.2 | 1.98.2 | Aug 19, 2025 | n8n is a workflow automation platform. From 1.77.0 to before 1.98.2, a stored Cross-Site Scripting (XSS) vulnerability was identified in n8n, specifically in the Form Trigger node's HTML form element. An authenticated attacker can inject malicious HTML via an with a srcd |
- CVE-2026-25054Feb 4, 2026affected >= 2.0.0, < 2.2.1fixed 2.2.1
n8n is an open source workflow automation platform. Prior to versions 1.123.9 and 2.2.1, a Cross-Site Scripting (XSS) vulnerability existed in a markdown rendering component used in n8n's interface, including workflow sticky notes and other areas that support markdown content. An
- CVE-2026-25053Feb 4, 2026affected >= 2.0.0, < 2.5.0fixed 2.5.0
n8n is an open source workflow automation platform. Prior to versions 1.123.10 and 2.5.0, vulnerabilities in the Git node allowed authenticated users with permission to create or modify workflows to execute arbitrary system commands or read arbitrary files on the n8n host. This i
- CVE-2026-25052Feb 4, 2026affected >= 2.0.0, < 2.5.0fixed 2.5.0
n8n is an open source workflow automation platform. Prior to versions 1.123.18 and 2.5.0, a vulnerability in the file access controls allows authenticated users with permission to create or modify workflows to read sensitive files from the n8n host system. This can be exploited t
- CVE-2026-25051Feb 4, 2026affected >= 1.123.0, < 1.123.2fixed 1.123.2
n8n is an open source workflow automation platform. Prior to version 1.123.2, a Cross-Site Scripting (XSS) vulnerability has been identified in the handling of webhook responses and related HTTP endpoints. Under certain conditions, the Content Security Policy (CSP) sandbox protec
- CVE-2025-61917Feb 4, 2026affected >= 1.65.0, < 1.114.3fixed 1.114.3
n8n is an open source workflow automation platform. From version 1.65.0 to before 1.114.3, the use of Buffer.allocUnsafe() and Buffer.allocUnsafeSlow() in the task runner allowed untrusted code to allocate uninitialized memory. Such uninitialized buffers could contain residual da
- CVE-2026-25049Feb 4, 2026affected < 1.123.17fixed 1.123.17
n8n is an open source workflow automation platform. Prior to versions 1.123.17 and 2.5.2, an authenticated user with permission to create or modify workflows could abuse crafted expressions in workflow parameters to trigger unintended system command execution on the host running
- CVE-2026-1470Jan 27, 2026affected < 1.123.17fixed 1.123.17
n8n contains a critical Remote Code Execution (RCE) vulnerability in its workflow Expression evaluation system. Expressions supplied by authenticated users during workflow configuration may be evaluated in an execution context that is not sufficiently isolated from the underlying
- CVE-2025-68949Jan 13, 2026affected >= 1.36.0, < 2.2.0fixed 2.2.0
n8n is an open source workflow automation platform. From 1.36.0 to before 2.2.0, the Webhook node’s IP whitelist validation performed partial string matching instead of exact IP comparison. As a result, an incoming request could be accepted if the source IP address merely contain
- CVE-2026-21894Jan 8, 2026affected >= 0.150.0, < 2.2.2fixed 2.2.2
n8n is an open source workflow automation platform. In versions from 0.150.0 to before 2.2.2, an authentication bypass vulnerability in the Stripe Trigger node allows unauthenticated parties to trigger workflows by sending forged Stripe webhook events. The Stripe Trigger creates
- CVE-2026-21877Jan 8, 2026affected >= 0.123.0, < 1.121.3fixed 1.121.3
n8n is an open source workflow automation platform. In versions 0.121.2 and below, an authenticated attacker may be able to execute malicious code using the n8n service. This could result in full compromise and can impact both self-hosted and n8n Cloud instances. This issue is fi
- CVE-2026-21858Jan 7, 2026affected >= 1.65.0, < 1.121.0fixed 1.121.0
n8n is an open source workflow automation platform. Versions starting with 1.65.0 and below 1.121.0 enable an attacker to access files on the underlying server through execution of certain form-based workflows. A vulnerable workflow could grant access to an unauthenticated remote
- CVE-2025-68697Dec 26, 2025affected >= 1.2.1, < 2.0.0fixed 2.0.0
n8n is an open source workflow automation platform. Prior to version 2.0.0, in self-hosted n8n instances where the Code node runs in legacy (non-task-runner) JavaScript execution mode, authenticated users with workflow editing access can invoke internal helper functions from with
- CVE-2025-68668Dec 26, 2025affected >= 1.0.0, < 2.0.0fixed 2.0.0
n8n is an open source workflow automation platform. From version 1.0.0 to before 2.0.0, a sandbox bypass vulnerability exists in the Python Code Node that uses Pyodide. An authenticated user with permission to create or modify workflows can exploit this vulnerability to execute a
- CVE-2025-61914Dec 26, 2025affected < 1.114.0fixed 1.114.0
n8n is an open source workflow automation platform. Prior to version 1.114.0, a stored Cross-Site Scripting (XSS) vulnerability may occur in n8n when using the “Respond to Webhook” node. When this node responds with HTML content containing executable scripts, the payload may exec
- affected >= 0.211.0, < 1.120.4fixed 1.120.4
n8n is an open source workflow automation platform. Versions starting with 0.211.0 and prior to 1.120.4, 1.121.1, and 1.122.0 contain a critical Remote Code Execution (RCE) vulnerability in their workflow expression evaluation system. Under certain conditions, expressions supplie
- CVE-2025-65964Dec 8, 2025affected >= 0.123.1, < 1.119.2fixed 1.119.2
n8n is an open source workflow automation platform. Versions 0.123.1 through 1.119.1 do not have adequate protections to prevent RCE through the project's pre-commit hooks. The Add Config operation allows workflows to set arbitrary Git configuration values, including core.hooksPa
- CVE-2025-62726Oct 30, 2025affected < 1.113.0fixed 1.113.0
n8n is an open source workflow automation platform. Prior to 1.113.0, a remote code execution vulnerability exists in the Git Node component available in both Cloud and Self-Hosted versions of n8n. When a malicious actor clones a remote repository containing a pre-commit hook, th
- CVE-2025-58177Sep 15, 2025affected >= 1.24.0, < 1.107.0fixed 1.107.0
n8n is an open source workflow automation platform. From 1.24.0 to before 1.107.0, there is a stored cross-site scripting (XSS) vulnerability in @n8n/n8n-nodes-langchain.chatTrigger. An authorized user can configure the LangChain Chat Trigger node with malicious JavaScript in the
- CVE-2025-57749Aug 20, 2025affected < 1.106.0fixed 1.106.0
n8n is a workflow automation platform. Before 1.106.0, a symlink traversal vulnerability was discovered in the Read/Write File node in n8n. While the node attempts to restrict access to sensitive directories and files, it does not properly account for symbolic links (symlinks). A
- CVE-2025-52478Aug 19, 2025affected >= 1.77.0, < 1.98.2fixed 1.98.2
n8n is a workflow automation platform. From 1.77.0 to before 1.98.2, a stored Cross-Site Scripting (XSS) vulnerability was identified in n8n, specifically in the Form Trigger node's HTML form element. An authenticated attacker can inject malicious HTML via an with a srcd
Page 3 of 4