Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package n8n, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (87)
CVE-2026-21858 — CVSS 10.0 (critical): n8n is an open source workflow automation platform. Versions starting with 1.65.0 and below 1.121.0 enable an attacker to access files on…
CVE-2026-54309 — CVSS 10.0 (critical): n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, when @n8n/mcp-browser is run in HTTP transport mode, the…
CVE-2026-25053 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to versions 1.123.10 and 2.5.0, vulnerabilities in the Git node allowed…
CVE-2026-25115 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to version 2.4.8, a vulnerability in the Python Code node allows authenticated…
CVE-2026-25049 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to versions 1.123.17 and 2.5.2, an authenticated user with permission to create…
CVE-2026-27494 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, an authenticated user with permission to…
CVE-2026-44789 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create…
CVE-2026-44791 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create…
CVE-2026-1470 — CVSS 9.9 (critical): n8n contains a critical Remote Code Execution (RCE) vulnerability in its workflow Expression evaluation system. Expressions supplied by…
CVE-2026-54305 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, three EE endpoints used by the Dynamic…
CVE-2026-54310 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify…
CVE-2026-27495 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, an authenticated user with permission to…
CVE-2026-21877 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. In versions 0.121.2 and below, an authenticated attacker may be able to execute…
CVE-2025-68668 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. From version 1.0.0 to before 2.0.0, a sandbox bypass vulnerability exists in the Python…
CVE-2026-27577 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, additional exploits in the expression…
CVE-2026-25052 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to versions 1.123.18 and 2.5.0, a vulnerability in the file access controls…
CVE-2026-42233 — CVSS 9.8 (critical): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the Oracle Database node's…
CVE-2026-54307 — CVSS 9.6 (critical): n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, a member-level user with editor access to a…
CVE-2026-42235 — CVSS 9.6 (critical): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an unauthenticated attacker could…
CVE-2026-56348 — CVSS 9.1 (critical): n8n before 2.20.0 contains a credential exfiltration vulnerability in the POST /rest/dynamic-node-parameters/options endpoint that allows…
CVE-2026-27493 — CVSS 9.0 (critical): n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, a second-order expression injection…
CVE-2026-44792 — CVSS 9.0 (critical): n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an attacker with write access to the git…
CVE-2026-33749 — CVSS 9.0 (critical): n8n is an open source workflow automation platform. Prior to versions 1.123.27, 2.13.3, and 2.14.1, an authenticated user with permission…
CVE-2026-42231 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the xml2js library used to…
CVE-2025-62726 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to 1.113.0, a remote code execution vulnerability exists in the Git Node…
CVE-2025-65964 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Versions 0.123.1 through 1.119.1 do not have adequate protections to prevent RCE…
CVE-2026-25056 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 1.118.0 and 2.4.0, a vulnerability in the Merge node's SQL Query mode…
CVE-2026-27497 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, an authenticated user with permission to…
CVE-2026-27498 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 2.2.0 and 1.123.8, an authenticated user with permission to create or…
CVE-2026-33660 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.13.3, and 1.123.26, an authenticated user with permission…
CVE-2026-44790 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create…
CVE-2026-33696 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.13.3, and 1.123.27, an authenticated user with permission…
CVE-2026-33713 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.13.3, and 1.123.26, an authenticated user with permission…
CVE-2026-42237 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the fix for GHSA-f3f2-mcxc-pwjx did not…
CVE-2026-42234 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user with permission…
CVE-2026-42229 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the SeaTable node's…
CVE-2026-42232 — CVSS 8.8 (high): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user with permission…
CVE-2025-52478 — CVSS 8.7 (high): n8n is a workflow automation platform. From 1.77.0 to before 1.98.2, a stored Cross-Site Scripting (XSS) vulnerability was identified in…
CVE-2026-54312 — CVSS 8.5 (high): n8n is an open source workflow automation platform. Prior to 2.24.0, an authenticated user with permission to create or modify workflows…
CVE-2026-49444 — CVSS 8.5 (high): n8n is an open source workflow automation platform. Prior to 1.123.48, 2.21.8, and 2.22.4, an authenticated user with permission to create…
CVE-2026-56351 — CVSS 8.2 (high): n8n before version 2.4.0 contains a sql injection vulnerability in MySQL, PostgreSQL, and Microsoft SQL nodes that allows authenticated…
CVE-2026-25055 — CVSS 8.1 (high): n8n is an open source workflow automation platform. Prior to versions 1.123.12 and 2.4.0, when workflows process uploaded files and…
CVE-2026-45732 — CVSS 8.1 (high): n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, the OAuth1 and OAuth2 credential reconnect…
CVE-2026-54313 — CVSS 7.7 (high): n8n is an open source workflow automation platform. Prior to 2.24.0, an authenticated user with workflow edit access could supply a…
CVE-2026-54304 — CVSS 7.7 (high): n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.1, an authenticated user with permission to create…
CVE-2026-49465 — CVSS 7.7 (high): n8n is an open source workflow automation platform. Prior to 1.123.48, 2.21.8, and 2.22.4, an authenticated user with permission to create…
CVE-2025-61917 — CVSS 7.7 (high): n8n is an open source workflow automation platform. From version 1.65.0 to before 1.114.3, the use of Buffer.allocUnsafe() and…
CVE-2026-54311 — CVSS 7.7 (high): n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify…
CVE-2026-42236 — CVSS 7.5 (high): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the MCP OAuth client registration…
CVE-2026-42226 — CVSS 7.5 (high): n8n is an open source workflow automation platform. Prior to versions 1.123.33 and 2.17.5, the dynamic-node-parameters endpoints did not…
CVE-2026-54314 — CVSS 7.5 (high): n8n is an open source workflow automation platform. Prior to 2.24.0, the Compression node's Decompress operation expanded…
CVE-2026-33665 — CVSS 7.5 (high): n8n is an open source workflow automation platform. Prior to versions 2.4.0 and 1.121.0, when LDAP authentication is enabled, n8n…
CVE-2026-33724 — CVSS 7.4 (high): n8n is an open source workflow automation platform. Prior to version 2.5.0, when the Source Control feature is configured to use SSH, the…
CVE-2025-61914 — CVSS 7.3 (high): n8n is an open source workflow automation platform. Prior to version 1.114.0, a stored Cross-Site Scripting (XSS) vulnerability may occur…
CVE-2026-54308 — CVSS 7.2 (high): n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, the MicrosoftAgent365Trigger and StripeTrigger node did not…
CVE-2026-21893 — CVSS 7.2 (high): n8n is an open source workflow automation platform. From version 0.187.0 to before 1.120.3, a command injection vulnerability was…
CVE-2025-68697 — CVSS 7.1 (high): n8n is an open source workflow automation platform. Prior to version 2.0.0, in self-hosted n8n instances where the Code node runs in legacy…
CVE-2025-57749 — CVSS 6.5 (medium): n8n is a workflow automation platform. Before 1.106.0, a symlink traversal vulnerability was discovered in the Read/Write File node in n8n…
CVE-2026-21894 — CVSS 6.5 (medium): n8n is an open source workflow automation platform. In versions from 0.150.0 to before 2.2.2, an authentication bypass vulnerability in the…
CVE-2026-27496 — CVSS 6.5 (medium): n8n is an open source workflow automation platform. Prior to versions 1.123.22, 2.9.3, and 2.10.1, an authenticated user with permission to…
CVE-2026-25631 — CVSS 6.5 (medium): n8n is an open source workflow automation platform. Prior to 1.121.0, there is a vulnerability in the HTTP Request node's credential domain…
CVE-2026-33663 — CVSS 6.5 (medium): n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.13.3, and 1.123.27, an authenticated user with the…
CVE-2026-42228 — CVSS 6.5 (medium): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /chat WebSocket endpoint used by…
CVE-2026-42227 — CVSS 6.5 (medium): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user with a valid API…
CVE-2026-54306 — CVSS 6.4 (medium): n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, a prototype pollution vulnerability allowed a crafted…
CVE-2026-42230 — CVSS 6.1 (medium): n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /mcp-oauth/register endpoint…
CVE-2026-54302 — CVSS 5.4 (medium): n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, an authenticated user with workflow edit access…
CVE-2026-54303 — CVSS 5.4 (medium): n8n is an open source workflow automation platform. Prior to 2.24.0, an endpoint in the Meta and Microsoft Teams trigger nodes reflects a…
CVE-2026-54301 — CVSS 5.4 (medium): n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, an authenticated user with workflow edit access…
CVE-2026-25051 — CVSS 5.4 (medium): n8n is an open source workflow automation platform. Prior to version 1.123.2, a Cross-Site Scripting (XSS) vulnerability has been…
CVE-2026-25054 — CVSS 5.4 (medium): n8n is an open source workflow automation platform. Prior to versions 1.123.9 and 2.2.1, a Cross-Site Scripting (XSS) vulnerability existed…
CVE-2026-27578 — CVSS 5.4 (medium): n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, an authenticated user with permission to…
CVE-2025-58177 — CVSS 5.4 (medium): n8n is an open source workflow automation platform. From 1.24.0 to before 1.107.0, there is a stored cross-site scripting (XSS)…
CVE-2026-56358 — CVSS 5.4 (medium): n8n before 1.123.25 (1.x) and before 2.11.2 (2.x), with the fix also included in 2.12.0, contains a stored cross-site scripting…
CVE-2026-33722 — CVSS 5.3 (medium): n8n is an open source workflow automation platform. Prior to versions 2.6.4 and 1.123.23, an authenticated user without permission to list…
CVE-2025-68949 — CVSS 5.3 (medium): n8n is an open source workflow automation platform. From 1.36.0 to before 2.2.0, the Webhook node’s IP whitelist validation performed…
CVE-2025-46343 — CVSS 5.0 (medium): n8n is a workflow automation platform. Prior to version 1.90.0, n8n is vulnerable to stored cross-site scripting (XSS) through the…
CVE-2025-49595 — CVSS 4.9 (medium): n8n is a workflow automation platform. Prior to version 1.99.0, there is a denial of Service vulnerability in /rest/binary-data endpoint…
CVE-2026-33751 — CVSS 4.8 (medium): n8n is an open source workflow automation platform. Prior to versions 1.123.27, 2.13.3, and 2.14.1, a flaw in the LDAP node's filter escape…
CVE-2025-49592 — CVSS 4.6 (medium): n8n is a workflow automation platform. Versions prior to 1.98.0 have an Open Redirect vulnerability in the login flow. Authenticated users…
CVE-2025-52554 — CVSS 4.3 (medium): n8n is a workflow automation platform. Prior to version 1.99.1, an authorization vulnerability was discovered in the /rest/executions/:id/st…
CVE-2026-33720 — CVSS 4.2 (medium): n8n is an open source workflow automation platform. Prior to version 2.8.0, when the `N8N_SKIP_AUTH_ON_OAUTH_CALLBACK` environment variable…
CVE-2026-56357 — CVSS 4.0 (medium): n8n before 1.123.15 and 2.5.0 contains a webhook forgery vulnerability in the GitHub Webhook Trigger node that fails to implement…