An attacker can exploit multiple vulnerabilities in n8n to gain elevated privileges, including administrator rights, to execute arbitrary code, manipulate data, bypass security measures, disclose sensitive information, or conduct cross-site and man-in-the-middle attacks. [Auto-archived: reprocess_no_remaining_articles — 2026-03-26T23:31:15.855Z]
| Vendor | Product | Versions |
|---|---|---|
| n8n | n8n | multiple versions, n8n (Merge Node), n8n (Community Edition), n8n (Binary Data Inline HTML Rendering), n8n (GSuiteAdmin Node), n8n (Form Trigger/Chat Trigger Nodes) |
Updated affected versions to include specific components and added new relevant tags.
Updated description with detailed attack vectors and changed severity to HIGH, indicating active exploitation.
Initial creation
