Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 2

Clear Filters
Found 47 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-21893 n8n Vulnerable to Command Injection in Community Package Installation n8n-ion8n--2026-02-04 17:36:52 Deep Dive
CVE-2026-25115 n8n is vulnerable to Python sandbox escape n8n-ion8n--2026-02-04 16:48:04 Deep Dive
CVE-2026-25056 n8n Arbitrary File Write leading to RCE in n8n Merge Node n8n-ion8n--2026-02-04 16:47:55 Deep Dive
CVE-2026-25055 n8n Arbitrary File Write on Remote Systems via SSH Node n8n-ion8n--2026-02-04 16:47:47 Deep Dive
CVE-2026-25054 n8n is Vulnerable to Stored Cross-Site Scripting via Markdown Rendering in Workflow UI n8n-ion8n--2026-02-04 16:47:29 Deep Dive
CVE-2026-25053 n8n is Vulnerable to OS Command Injection in Git Node n8n-ion8n--2026-02-04 16:47:14 Deep Dive
CVE-2026-25052 n8n Improper File Access Controls Allow Arbitrary File Read by Authenticated Users n8n-ion8n--2026-02-04 16:47:04 Deep Dive
CVE-2026-25051 n8n Improper CSP Enforcement in Webhook Responses May Allow Stored XSS n8n-ion8n--2026-02-04 16:46:53 Deep Dive
CVE-2025-61917 n8n Unsafe Buffer Allocation Allows In-Process Memory Disclosure in Task Runner n8n-ion8n High 7.7 2026-02-04 16:46:43 Deep Dive
CVE-2026-25049 n8n Has an Expression Escape Vulnerability Leading to RCE n8n-ion8n--2026-02-04 16:46:31 Deep Dive
CVE-2025-68949 n8n has a Webhook Node IP Whitelist Bypass via Partial String Matching n8n-ion8n Medium 5.3 2026-01-13 18:43:20 Deep Dive
CVE-2026-21894 n8n's Missing Stripe-Signature Verification Allows Unauthenticated Forged Webhooks n8n-ion8n Medium 6.5 2026-01-08 09:56:04 Deep Dive
CVE-2026-21877 n8n is vulnerable to Remote Code Execution via Arbitrary File Write n8n-ion8n Critical 9.9 2026-01-08 00:39:59 Deep Dive
CVE-2026-21858 n8n Vulnerable to Unauthenticated File Access via Improper Webhook Request Handling n8n-ion8n Critical 10.0 2026-01-07 23:57:52 Deep Dive
CVE-2025-68697 Self-hosted n8n has Legacy Code node that enables arbitrary file read/write n8n-ion8n High 7.1 2025-12-26 21:51:12 Deep Dive
CVE-2025-68668 n8n Vulnerable to Arbitrary Command Execution in Pyodide based Python Code Node n8n-ion8n Critical 9.9 2025-12-26 21:49:21 Deep Dive
CVE-2025-61914 n8n's Possible Stored XSS in "Respond to Webhook" Node May Execute Outside iframe Sandbox n8n-ion8n High 7.3 2025-12-26 21:49:00 Deep Dive
CVE-2025-68613 n8n Vulnerable to Remote Code Execution via Expression Injection n8n-ion8n Critical 9.9 2025-12-19 22:23:48 Deep Dive
CVE-2025-65964 n8n Vulnerable to Remote Code Execution via Git Node Custom Pre-Commit Hook n8n-ion8n--2025-12-08 23:35:02 Deep Dive
CVE-2025-62726 n8n Vulnerable to Remote Code Execution via Git Node Pre-Commit Hook n8n-ion8n High 8.8 2025-10-30 16:24:11 Deep Dive