Vulnerability in N8n-io N8n
CVE-2026-54311
n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows could pollute the sandbox used by the Merge node's SQL Query mode. Because the sandbox cont…
Affected products
- N8n-io N8n — versions >= 2.26.0, < 2.26.2, < 2.25.7
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)