AI Threat Alert

n8n Vulnerabilities

npm AI Agents

69

Risk Score

86

Total CVEs

21

Critical

npm

Ecosystem

May 19, 2026

Last CVE

45%

Patch Rate

3d

Avg Time to Patch

188,231 stars 57,712 forks 1,496 issues 16 dependents Last push May 16, 2026

OpenSSF Scorecard 6.1/10

Known Vulnerabilities (86 total, page 3 of 4)

Severity CVE ID Summary CVSS Published

CRITICAL CVE-2026-27493 n8n: Code Injection enables RCE 9.0 Feb 25, 2026 MEDIUM CVE-2026-25631 n8n: Input Validation flaw enables exploitation 6.5 Feb 6, 2026 HIGH CVE-2026-21893 n8n: Input Validation flaw enables exploitation 7.2 Feb 4, 2026 CRITICAL CVE-2026-25115 n8n: Protection Bypass circumvents security controls 9.9 Feb 4, 2026 HIGH CVE-2026-25056 n8n: Arbitrary File Upload enables RCE 8.8 Feb 4, 2026 HIGH CVE-2026-25055 n8n: Path Traversal enables file access 8.1 Feb 4, 2026 MEDIUM CVE-2026-25054 n8n: XSS enables session hijacking 5.4 Feb 4, 2026 CRITICAL CVE-2026-25053 n8n: Command Injection enables RCE 9.9 Feb 4, 2026 CRITICAL CVE-2026-25052 n8n: security flaw enables exploitation 9.9 Feb 4, 2026 MEDIUM CVE-2026-25051 n8n: XSS enables session hijacking 5.4 Feb 4, 2026 CRITICAL CVE-2026-25049 n8n: security flaw enables exploitation 9.9 Feb 4, 2026 HIGH CVE-2025-61917 n8n: Info Disclosure leaks sensitive data 7.7 Feb 4, 2026 CRITICAL CVE-2026-1470 n8n: Code Injection enables RCE 9.9 Jan 27, 2026 CRITICAL CVE-2026-0863 n8n: Code Injection enables RCE 9.9 Jan 18, 2026 MEDIUM CVE-2025-68949 n8n: security flaw enables exploitation 5.3 Jan 13, 2026 MEDIUM CVE-2026-21894 n8n: security flaw enables exploitation 6.5 Jan 8, 2026 CRITICAL CVE-2026-21877 n8n: Code Injection enables RCE 9.9 Jan 8, 2026 CRITICAL CVE-2026-21858 n8n: Input Validation flaw enables exploitation 10.0 Jan 8, 2026 MEDIUM CVE-2025-68697 n8n: security flaw enables exploitation 5.4 Dec 26, 2025 CRITICAL CVE-2025-68668 n8n: Protection Bypass circumvents security controls 9.9 Dec 26, 2025 MEDIUM CVE-2025-61914 n8n: XSS enables session hijacking 5.4 Dec 26, 2025 HIGH CVE-2025-68613 n8n: security flaw enables exploitation 8.8 Dec 19, 2025 HIGH CVE-2025-65964 n8n: security flaw enables exploitation 8.8 Dec 9, 2025 HIGH CVE-2025-62726 n8n: security flaw enables exploitation 8.8 Oct 30, 2025 MEDIUM CVE-2025-58177 n8n: stored XSS in LangChain chat trigger (public) 5.4 Sep 15, 2025

Showing 51–75 of 86

← Previous Next →

Monitor n8n in your stack

Get instant alerts when new vulnerabilities affect n8n. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring