n8n (Node.js) – Support, CVEs & Health

GHSA-2j5h-858j-5mpf CVSS_V3

n8n: Cross-Tenant Credential Takeover via Dynamic Credentials EE Endpoints

Published: 2026-06-16 Fixed in: 1.123.55

GHSA-2p9h-rqjw-gm92 CVSS_V3

n8n Vulnerable to Stored XSS via Various Nodes

Published: 2026-02-25 Fixed in: 1.123.22

GHSA-2vff-hj5x-8gq7 CVSS_V3

n8n: Prototype Pollution enables confused-deputy execution via public webhooks

Published: 2026-06-16 Fixed in: 2.26.2

GHSA-2vx9-7wpg-88jq CVSS_V3

n8n: Legacy ExecuteWorkflow Node Bypassed File Path Restrictions

Published: 2026-05-19 Fixed in: 2.19.3

GHSA-2xcx-75h9-vr9h CVSS_V4

n8n's domain allowlist bypass enables credential exfiltration

Published: 2026-02-04 Fixed in: 1.121.0

GHSA-364x-8g5j-x2pr CVSS_V3

n8n has XSS in its Credential Management Flow

Published: 2026-03-27 Fixed in: 2.8.0

GHSA-365g-vjw2-grx8 CVSS_V3

n8n: Execute Command Node Allows Authenticated Users to Run Arbitrary Commands on Host

Published: 2025-10-09 No fix available

GHSA-3875-8gcx-7v46 CVSS_V3

n8n: Credential exfiltration via Allowed HTTP Request Domains Bypass

Published: 2026-05-19 Fixed in: 2.20.0

GHSA-38c7-23hj-2wgq CVSS_V3

n8n has Webhook Forgery on Zendesk Trigger Node

Published: 2026-02-26 Fixed in: 1.123.18

GHSA-3c7f-5hgj-h279 CVSS_V3

n8n has XSS in Chat Trigger Node through Custom CSS

Published: 2026-03-27 Fixed in: 1.123.27

n8n