n8n is an open source workflow automation platform. Versions starting with 1.65.0 and below 1.121.0 enable an attacker to access files on the underlying server through execution of certain form-based workflows. A vulnerable workflow could grant access to an unauthenticated remote attacker, resulting in exposure of sensitive information stored on the system and may enable further compromise depending on deployment configuration and workflow usage. This issue is fixed in version 1.121.0.
The vulnerability results from improper input validation (CWE-20) in the form workflow handling mechanism. An attacker can craft a request to a publicly accessible workflow, resulting in arbitrary file reads from the server file system without requiring any credentials. Depending on the deployment configuration and workflow content, further environment compromise is possible.
An attacker can gain access to sensitive files stored on the server (e.g., configurations, secrets, API keys), and depending on the deployment configuration, further system compromise may occur.
n8n should be updated to version 1.121.0 or later, where the issue has been fixed. Until the update is applied, it is recommended to restrict network access to the n8n instance and disable public access to form-based workflows.
n8n versions 1.65.0 through 1.120.x (below 1.121.0)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:NN8n
APPN8N1.65.0 – 1.121.0 (bez)
Related vulnerabilities
RCE w systemie ewaluacji wyrażeń n8n — krytyczna podatność
RCE w n8n poprzez ominięcie łatki CVE-2026-42232 w węźle XML
n8n: prototype pollution w HTTP Request node prowadzący do RCE
Wstrzyknięcie flag CLI w węźle Git platformy n8n — odczyt dowolnych plików
Prototype Pollution w n8n prowadzące do RCE przez webhook handler