SecurityWeek

Critical Vulnerability Exposes n8n Instances to Takeover Attacks

CVE-2026-21858, a critical n8n vulnerability, can be exploited for unauthenticated remote code execution, leading to instance ...
Infosecurity Magazine

Maximum Severity “Ni8mare” Bug Lets Hackers Hijack n8n Servers

A newly discovered vulnerability in authentication platform n8n could allow threat actors to take control of n8n servers ...
The Register on MSN

Maximum-severity n8n flaw lets randos run your automation server

Unauthenticated RCE means anyone on the network can seize full control A maximum-severity bug in the popular automation ...
The Hacker News

Researchers Uncover NodeCordRAT Hidden in npm Bitcoin-Themed Packages

Security researchers found 3 npm packages that installed NodeCordRAT malware, stealing browser data, crypto wallet secrets & ...