New flaw in n8n (CVE-2026-25049) allows unauthenticated users to run arbitrary commands on servers Vulnerability risks theft of secrets (API keys, OAuth tokens) and cross-tenant data exposure Patch ...

Multiple critical vulnerabilities in the popular n8n open-source workflow automation platform allow escaping the confines of the environment and taking complete control of the host server.

Researchers at Pillar Security have found two maximum severity vulnerabilities (CVSS score of 10.0) in n8n, a popular open-source workflow automation platform powering hundreds of thousands of ...

The two bugs impacted n8n’s sandbox mechanism and could be exploited via weaknesses in the AST sanitization logic. Two critical- and high-severity vulnerabilities in the n8n AI workflow automation ...

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.

Cybersecurity researchers have disclosed two new security flaws in the n8n workflow automation platform, including a crucial vulnerability that could result in remote code execution. Shachar Menashe, ...

Threat actors were spotted weaponizing the n8n automation ecosystem this week, slipping malicious npm packages into its marketplace of community-maintained nodes. The deceptive packages, disguised as ...

A critical-severity vulnerability in the n8n workflow automation platform allows attackers to take over vulnerable instances, data security firm Cyera warns. N8n has over 100 million Docker pulls, ...

What if building complex workflows felt as natural as sketching ideas on a whiteboard? With the release of n8n 2, that vision is closer than ever. This major update doesn’t just tweak a few features, ...

Query groups uses AI to cluster similar search queries. The new card shows total clicks per group and highlights groups trending up or down. Query groups will roll out over the coming weeks to high ...