Skip to content

Commit ea709ff

Browse files
1 parent 9d0f777 commit ea709ff

4 files changed

Lines changed: 16 additions & 8 deletions

File tree

advisories/github-reviewed/2026/02/GHSA-f3f2-mcxc-pwjx/GHSA-f3f2-mcxc-pwjx.json

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,11 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-f3f2-mcxc-pwjx",
4-
"modified": "2026-02-26T15:56:31Z",
4+
"modified": "2026-06-24T13:08:59Z",
55
"published": "2026-02-26T15:56:31Z",
6-
"aliases": [],
6+
"aliases": [
7+
"CVE-2026-56351"
8+
],
79
"summary": "n8n: SQL Injection in MySQL, PostgreSQL, and Microsoft SQL nodes",
810
"details": "## Impact\nAn authenticated user with permission to create or modify workflows and access to a database credential could unknowingly create a workflow that was vulnerable to SQL injection, even while expecting inputs to be handled safely through escaped parameters. By supplying specially crafted table or column names, an attacker could inject arbitrary SQL because the MySQL, PostgreSQL, and Microsoft SQL nodes did not escape identifier values when constructing queries, enabling injection through node configuration parameters.\n\n## Patches\nThe issue has been fixed in n8n version 2.4.0. Users should upgrade to this version or later to remediate the vulnerability.\n\n## Workarounds\nIf upgrading is not immediately possible, administrators should consider the following temporary mitigations:\n- Limit workflow creation and editing permissions to fully trusted users only.\n- Disable the MySQL, PostgreSQL, and Microsoft SQL nodes by adding `n8n-nodes-base.mySql`, `n8n-nodes-base.postgres`, and `n8n-nodes-base.microsoftSql` to the `NODES_EXCLUDE` environment variable.\n\nThese workarounds do not fully remediate the risk and should only be used as short-term mitigation measures.\n\n## Credit\n\nReporter: Pawel Bednarz from the NATO Cyber Security Centre (NCSC)",
911
"severity": [

advisories/github-reviewed/2026/02/GHSA-wfx3-6g53-9fgc/GHSA-wfx3-6g53-9fgc.json

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,11 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-wfx3-6g53-9fgc",
4-
"modified": "2026-02-25T19:13:32Z",
4+
"modified": "2026-06-24T13:09:44Z",
55
"published": "2026-02-25T19:13:32Z",
6-
"aliases": [],
6+
"aliases": [
7+
"CVE-2026-56368"
8+
],
79
"summary": "ImageMagick: Memory Leak in multiple coders that write raw pixel data ",
810
"details": "A memory leak vulnerability exists in multiple coders that write raw pixel data where an object is not freed. \n\n```\nDirect leak of 160 byte(s) in 1 object(s) allocated from:\n```",
911
"severity": [

advisories/github-reviewed/2026/03/GHSA-q4fm-pjq6-m63g/GHSA-q4fm-pjq6-m63g.json

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,11 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-q4fm-pjq6-m63g",
4-
"modified": "2026-03-27T18:05:47Z",
4+
"modified": "2026-06-24T13:09:16Z",
55
"published": "2026-03-27T18:05:47Z",
6-
"aliases": [],
6+
"aliases": [
7+
"CVE-2026-56358"
8+
],
79
"summary": "n8n has a Stored XSS Vulnerability in its Form Trigger",
810
"details": "## Impact\nAn authenticated user with permission to create or modify workflows could exploit a flaw in the Form Trigger node's CSS sanitization to store a cross-site scripting (XSS) payload. The injected script executes persistently for every visitor of the published form, enabling form submission hijacking and phishing. The existing Content Security Policy prevents direct n8n session cookie theft but does not prevent script execution or form action manipulation.\n\n## Patches\nThe issue has been fixed in n8n versions 2.12.0, 2.11.2, and 1.123.25. Users should upgrade to one of these versions or later to remediate the vulnerability.\n\n## Workarounds\nIf upgrading is not immediately possible, administrators should consider the following temporary mitigations:\n- Limit workflow creation and editing permissions to fully trusted users only.\n- Disable the Form Trigger node by adding `n8n-nodes-base.formTrigger` to the `NODES_EXCLUDE` environment variable.\n\nThese workarounds do not fully remediate the risk and should only be used as short-term mitigation measures.",
911
"severity": [

advisories/github-reviewed/2026/04/GHSA-pmpg-6pww-fg6q/GHSA-pmpg-6pww-fg6q.json

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,11 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-pmpg-6pww-fg6q",
4-
"modified": "2026-04-16T15:54:56Z",
4+
"modified": "2026-06-24T13:10:04Z",
55
"published": "2026-04-14T23:32:35Z",
6-
"aliases": [],
6+
"aliases": [
7+
"CVE-2026-56370"
8+
],
79
"summary": "ImageMagick has out-of-bounds access in ConnectedComponentsImage() via CLI-controlled connected-components:* artifacts",
810
"details": "When the `connected-components:*` define specifies an invalid index and out of bound operation will result in an access violation.",
911
"severity": [

0 commit comments

Comments
 (0)