n8n's Source Control SSH Configuration Uses StrictHostKeyChecking=no

Published 2026-03-25 by GitHub_M

OOM from malicious IFD offset in golang.org/x/image/tiff

Published 2026-03-25 by Go

Domoticz < 2026.1 Stored XSS via Hardware Configuration Endpoint

Published 2026-03-25 by VulnCheck

n8n Has External Secrets Authorization Bypass in Credential Saving

Published 2026-03-25 by GitHub_M

n8n Has Authorization Bypass in OAuth Callback via N8N_SKIP_AUTH_ON_OAUTH_CALLBACK

Published 2026-03-25 by GitHub_M

n8n Vulnerable to SQL Injection in Data Table Node via orderByColumn Expression

Published 2026-03-25 by GitHub_M

n8n Vulnerable to Prototype Pollution in XML & GSuiteAdmin node parameters lead to RCE

Published 2026-03-25 by GitHub_M

n8n: LDAP Email-Based Account Linking Allows Privilege Escalation and Account Takeover

Published 2026-03-25 by GitHub_M

n8n Vulnerable to Credential Theft via Name-Based Resolution and Permission Checker Bypass in Community Edition

Published 2026-03-25 by GitHub_M

n8n Has Multiple Remote Code Execution Vulnerabilities in Merge Node AlaSQL SQL Mode

Published 2026-03-25 by GitHub_M