CVE Catalog

CVE-2026-54303

MediumCVSS 5.4
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.18%

7th percentile — higher than 7% of all known CVEs

Summary

In n8n before version 2.24.0, an endpoint in the Meta and Microsoft Teams trigger nodes reflects a query parameter into the HTTP response without sanitization or Content-Security-Policy headers, enabling reflected XSS in the n8n origin when a logged-in user visits a crafted URL.

Risk Assessment

An attacker can steal the session or data of a logged-in user, leading to account takeover and unauthorized access to workflows.

Recommendation

It is recommended to immediately upgrade n8n to version 2.24.0 or later, which contains the fix for this vulnerability.

Original NVD description (English source)

n8n is an open source workflow automation platform. Prior to 2.24.0, an endpoint in the Meta and Microsoft Teams trigger nodes reflects a query parameter into the HTTP response without sanitization or Content-Security-Policy headers, enabling reflected XSS in the n8n origin when a logged-in user visits a crafted URL. This vulnerability is fixed in 2.24.0.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS