Infosecurity Magazine

Critical Zero-Click Flaw in n8n Allows Full Server Compromise

The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account ...

Automation tool n8n: Updates patch code injection flaws

In the automation tool n8n, eleven security vulnerabilities have been discovered. Three of these are considered critical risks. Admins should update quickly.
CSO Online

OAuth vulnerability in n8n automation platform could lead to system compromise

A weakness in the configuration of OAuth credentials opens up a stored XSS vulnerability in the n8n automation platform, ...
GIGAZINE

A vulnerability was discovered in the workflow automation tool 'n8n' that allows attackers to execute remote code without authentication

A research team at data security platform Cyera has discovered a critical vulnerability in n8n, a no-code workflow automation tool, called ' Ni8mare ( CVE-2026-21858), ' which allows remote code ...