Multiple vulnerabilities in n8n allowing code execution, security bypass, information disclosure, SQL injection, DoS, XSS, redirection, and session hijacking

72% confidence

Description

Multiple vulnerabilities in n8n can be exploited by an attacker to execute arbitrary code, bypass security measures, disclose confidential information, perform SQL injection attacks, cause denial-of-service conditions, conduct cross-site scripting attacks, redirect users to malicious websites, or hijack sessions.

Affected Products

Vendor	Product	Versions
—	n8n	—

Related News (1 articles)

Tier B

BSI Advisories2h ago

[NEU] [hoch] n8n: Mehrere Schwachstellen

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

PublishedApr 23, 2026

Last enriched2h ago

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Verification

State: reported

Confidence: 72%

Vulnerability Timeline

CVE Published

Apr 23, 2026

Discovered by ZDM

Apr 23, 2026