Critical N8n Flaws Disclosed Along With Public Exploits
Critical vulnerabilities in the n8n workflow automation platform (CVE-2026-25049) allow any authenticated user to execute remote code, potentially gaining full control over the server. Discovered by multiple cybersecurity firms, these issues stem from inadequate sandboxing, enabling attackers to access sensitive data and configurations. Users are advised to update to versions 1.123.17 and 2.5.2, rotate encryption keys, and scrutinize workflows for suspicious activity, as no exploits have been reported yet.




