Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
GHSA-h3jj-5f3v-3685 Authorization Flaw in n8n (GHSA-h3jj-5f3v-3685)
vulnerability in n8n (GHSA-h3jj-5f3v-3685). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.25.7` or later.
GHSA-jwm3-qcfw-c5pp Vulnerability in n8n (GHSA-jwm3-qcfw-c5pp)
vulnerability in n8n (GHSA-jwm3-qcfw-c5pp). Risk of unauthorized operations or information disclosure. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.25.7` or later.
CVE-2026-54302 Cross-Site Scripting (XSS) in n8n (CVE-2026-54302)
cross-site scripting in n8n (CVE-2026-54302). Risk of unauthorized operations or information disclosure. Exploitable via ``webhookId``. Mitigation: upgrade to `2.25.7` or later.
CVE-2026-54303 Cross-Site Scripting (XSS) in n8n (CVE-2026-54303)
cross-site scripting in n8n (CVE-2026-54303). Risk of unauthorized operations or information disclosure. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.24.0` or later.
CVE-2026-54312 Vulnerability in n8n (CVE-2026-54312)
vulnerability in n8n (CVE-2026-54312). Risk of unauthorized operations or information disclosure. Exploitable via ``Object.prototype``. Mitigation: upgrade to `2.24.0` or later.
GHSA-69qj-pvh9-c5wg OS Command Injection in yt-dlp (GHSA-69qj-pvh9-c5wg)
OS command injection in yt-dlp (GHSA-69qj-pvh9-c5wg). Risk of unauthorized operations or information disclosure. Exploitable via ``printf``. Mitigation: upgrade to `2026.6.9` or later.
CVE-2026-22312 Vulnerability in CVE-2026-22312 (CVE-2026-22312)
vulnerability in CVE-2026-22312 (CVE-2026-22312). Data can be tampered with by attackers.
CVE-2026-10303 Vulnerability in path-traversal (CVE-2026-10303)
vulnerability in path-traversal (CVE-2026-10303). Confidential information can be exposed externally.
CVE-2026-22313 OS Command Injection in CVE-2026-22313 (CVE-2026-22313)
OS command injection in CVE-2026-22313 (CVE-2026-22313). Successful exploitation can lead to full system takeover.
CVE-2026-12117 Information Disclosure in devolutions (CVE-2026-12117)
vulnerability in devolutions (CVE-2026-12117). Risk of unauthorized operations or information disclosure.
CVE-2026-0164 Vulnerability in google (CVE-2026-0164)
vulnerability in google (CVE-2026-0164). Successful exploitation can lead to full system takeover.
CVE-2026-12425 Cross-Site Scripting (XSS) in powerschool (CVE-2026-12425)
cross-site scripting in powerschool (CVE-2026-12425). Risk of unauthorized operations or information disclosure.
CVE-2026-12105 Vulnerability in devolutions (CVE-2026-12105)
vulnerability in devolutions (CVE-2026-12105). Confidential information can be exposed externally.
CVE-2026-11890 Vulnerability in devolutions (CVE-2026-11890)
vulnerability in devolutions (CVE-2026-11890). Risk of unauthorized operations or information disclosure.
CVE-2026-0162 Vulnerability in cpp (CVE-2026-0162)
vulnerability in cpp (CVE-2026-0162). Successful exploitation can lead to full system takeover.
CVE-2026-0165 Vulnerability in google (CVE-2026-0165)
vulnerability in google (CVE-2026-0165). Confidential information can be exposed externally.
CVE-2026-0161 Vulnerability in cpp (CVE-2026-0161)
vulnerability in cpp (CVE-2026-0161). Successful exploitation can lead to full system takeover.
CVE-2026-0152 Buffer Overflow in c (CVE-2026-0152)
vulnerability in c (CVE-2026-0152). Successful exploitation can lead to full system takeover.
CVE-2026-46448 Vulnerability in nova (CVE-2026-46448)
vulnerability in nova (CVE-2026-46448). Risk of unauthorized operations or information disclosure.
CVE-2026-0153 Out-of-Bounds Write in google (CVE-2026-0153)
out-of-bounds write in google (CVE-2026-0153). Successful exploitation can lead to full system takeover.
CVE-2026-0156 Vulnerability in cpp (CVE-2026-0156)
vulnerability in cpp (CVE-2026-0156). Risk of unauthorized operations or information disclosure.
CVE-2026-0158 Vulnerability in google (CVE-2026-0158)
vulnerability in google (CVE-2026-0158). Risk of unauthorized operations or information disclosure.
CVE-2026-0157 Vulnerability in google (CVE-2026-0157)
vulnerability in google (CVE-2026-0157). Risk of unauthorized operations or information disclosure.
CVE-2026-0151 Vulnerability in c (CVE-2026-0151)
vulnerability in c (CVE-2026-0151). Successful exploitation can lead to full system takeover.
CVE-2026-0149 Vulnerability in google (CVE-2026-0149)
vulnerability in google (CVE-2026-0149). Successful exploitation can lead to full system takeover.
CVE-2026-0154 Vulnerability in google (CVE-2026-0154)
vulnerability in google (CVE-2026-0154). Successful exploitation can lead to full system takeover.
CVE-2026-0146 Vulnerability in c (CVE-2026-0146)
vulnerability in c (CVE-2026-0146). Successful exploitation can lead to full system takeover.
CVE-2026-0145 Vulnerability in google (CVE-2026-0145)
vulnerability in google (CVE-2026-0145). Risk of unauthorized operations or information disclosure.
CVE-2026-0148 Vulnerability in cpp (CVE-2026-0148)
vulnerability in cpp (CVE-2026-0148). Successful exploitation can lead to full system takeover.
CVE-2026-0150 Vulnerability in google (CVE-2026-0150)
vulnerability in google (CVE-2026-0150). Successful exploitation can lead to full system takeover.
CVE-2026-0155 Vulnerability in google (CVE-2026-0155)
vulnerability in google (CVE-2026-0155). Risk of unauthorized operations or information disclosure.
CVE-2026-0144 Vulnerability in cpp (CVE-2026-0144)
vulnerability in cpp (CVE-2026-0144). Risk of unauthorized operations or information disclosure.
CVE-2026-0147 Vulnerability in c (CVE-2026-0147)
vulnerability in c (CVE-2026-0147). Successful exploitation can lead to full system takeover.
CVE-2026-0160 Vulnerability in cpp (CVE-2026-0160)
vulnerability in cpp (CVE-2026-0160). Successful exploitation can lead to full system takeover.
CVE-2026-0143 Use-After-Free in c (CVE-2026-0143)
vulnerability in c (CVE-2026-0143). Successful exploitation can lead to full system takeover.
CVE-2026-0139 Buffer Overflow in google (CVE-2026-0139)
vulnerability in google (CVE-2026-0139). Successful exploitation can lead to full system takeover.
CVE-2026-0132 Vulnerability in google (CVE-2026-0132)
vulnerability in google (CVE-2026-0132). Successful exploitation can lead to full system takeover.
CVE-2026-0142 Vulnerability in c (CVE-2026-0142)
vulnerability in c (CVE-2026-0142). Risk of unauthorized operations or information disclosure.
CVE-2026-0141 Vulnerability in cpp (CVE-2026-0141)
vulnerability in cpp (CVE-2026-0141). Risk of unauthorized operations or information disclosure.
CVE-2026-0136 Vulnerability in dos (CVE-2026-0136)
vulnerability in dos (CVE-2026-0136). Risk of unauthorized operations or information disclosure.
CVE-2026-0135 Out-of-Bounds Read in google (CVE-2026-0135)
vulnerability in google (CVE-2026-0135). Successful exploitation can lead to full system takeover.
CVE-2026-0137 Use-After-Free in c (CVE-2026-0137)
vulnerability in c (CVE-2026-0137). Successful exploitation can lead to full system takeover.
CVE-2026-0133 Vulnerability in c (CVE-2026-0133)
vulnerability in c (CVE-2026-0133). Successful exploitation can lead to full system takeover.
CVE-2026-0140 Out-of-Bounds Read in google (CVE-2026-0140)
vulnerability in google (CVE-2026-0140). Risk of unauthorized operations or information disclosure.
CVE-2026-0128 Out-of-Bounds Read in google (CVE-2026-0128)
vulnerability in google (CVE-2026-0128). Confidential information can be exposed externally.
CVE-2026-0130 Vulnerability in google (CVE-2026-0130)
vulnerability in google (CVE-2026-0130). Risk of unauthorized operations or information disclosure.
CVE-2026-0138 Vulnerability in c (CVE-2026-0138)
vulnerability in c (CVE-2026-0138). Successful exploitation can lead to full system takeover.
CVE-2026-0134 Vulnerability in cpp (CVE-2026-0134)
vulnerability in cpp (CVE-2026-0134). Risk of unauthorized operations or information disclosure.
CVE-2026-0126 Out-of-Bounds Write in google (CVE-2026-0126)
out-of-bounds write in google (CVE-2026-0126). Successful exploitation can lead to full system takeover.
CVE-2026-0127 Out-of-Bounds Read in cpp (CVE-2026-0127)
vulnerability in cpp (CVE-2026-0127). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →