AI Threat Alert

n8n Vulnerabilities

npm AI Agents
69
Risk Score
86
Total CVEs
21
Critical
npm
Ecosystem
May 19, 2026
Last CVE
45%
Patch Rate
3d
Avg Time to Patch
188,231 stars 57,712 forks 1,496 issues 16 dependents Last push May 16, 2026
View on GitHub
OpenSSF Scorecard 6.1/10

Known Vulnerabilities (86 total, page 1 of 4)

Severity CVE ID Summary CVSS Published
CRITICAL GHSA-3875-8gcx-7v46 n8n: SSRF bypasses credential domain restrictions 9.1 May 19, 2026 MEDIUM GHSA-2vx9-7wpg-88jq n8n: path traversal bypasses file access restriction 6.4 May 19, 2026 HIGH CVE-2026-45707 n8n-mcp: tenant isolation bypass, operator RCE risk 8.1 May 18, 2026 MEDIUM CVE-2026-45582 n8n-mcp: telemetry leak exposes workflow URL secrets 6.5 May 18, 2026 HIGH CVE-2026-45548 @budibase/server: SSRF in AI Extract bypasses IP blacklist 7.7 May 15, 2026 CRITICAL CVE-2026-44789 n8n: prototype pollution in HTTP node enables RCE -- May 14, 2026 CRITICAL CVE-2026-44790 n8n: Git node arg injection enables full server compromise -- May 14, 2026 CRITICAL CVE-2026-44791 n8n: XML node patch bypass enables host RCE -- May 14, 2026 HIGH CVE-2026-44792 n8n: SQL injection via poisoned Source Control git repo -- May 14, 2026 HIGH CVE-2026-45732 n8n: OAuth token hijack via credential permission bypass -- May 14, 2026 UNKNOWN CVE-2026-44694 n8n-MCP: SSRF allows internal network access via webhook tools -- May 8, 2026 HIGH GHSA-8g7g-hmwm-6rv2 n8n-mcp: path traversal + SSRF exposes n8n API keys 8.3 May 8, 2026 HIGH CVE-2026-42449 n8n-mcp: SSRF bypass via IPv6 leaks API keys 8.5 Apr 30, 2026 UNKNOWN CVE-2026-42237 n8n: SQL injection in Snowflake/MySQL nodes bypasses fix -- Apr 29, 2026 UNKNOWN CVE-2026-42233 n8n: SQL injection in Oracle node allows data exfiltration -- Apr 29, 2026 UNKNOWN CVE-2026-42230 n8n: MCP OAuth open redirect enables phishing -- Apr 29, 2026 UNKNOWN CVE-2026-42229 n8n: SQL injection in SeaTable node leaks restricted rows -- Apr 29, 2026 UNKNOWN CVE-2026-42228 n8n: WebSocket auth bypass hijacks AI agent workflows -- Apr 29, 2026 UNKNOWN CVE-2026-42236 n8n: unauthenticated MCP endpoint causes memory DoS -- Apr 29, 2026 UNKNOWN CVE-2026-42227 n8n: IDOR leaks cross-project variables via API key -- Apr 29, 2026 UNKNOWN CVE-2026-42234 n8n: Python sandbox escape enables container RCE -- Apr 29, 2026 UNKNOWN CVE-2026-42226 n8n: IDOR exposes cross-user API key exfiltration -- Apr 29, 2026 UNKNOWN CVE-2026-42235 n8n: stored XSS via MCP OAuth steals agent sessions -- Apr 29, 2026 UNKNOWN CVE-2026-42231 n8n: prototype pollution → RCE via Git node SSH -- Apr 29, 2026 UNKNOWN CVE-2026-42232 n8n: XML Node prototype pollution → RCE -- Apr 29, 2026

Showing 1–25 of 86

Next →

Monitor n8n in your stack

Get instant alerts when new vulnerabilities affect n8n. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring