CVE search
367,259 resultsCVE-2026-12957HIGHArbitrary Code Execution in Language Servers for AWSEPSS 0.1%CVE-2026-13007HIGHInsecure Public Caching on REST API Endpoints in Tenable Identity ExposureEPSS 0.4%CVE-2026-44792HIGHn8n: Source Control Pull SQL InjectionEPSS 0.3%CVE-2026-44791CRITICALn8n: XML Node Prototype Pollution Patch BypassEPSS 0.6%CVE-2026-44790CRITICALn8n: Arbitrary File Read via Git NodeEPSS 0.6%CVE-2026-44789CRITICALn8n: HTTP Request Node Pagination Prototype Pollution to RCEEPSS 0.6%CVE-2026-45732HIGHn8n: Cross-user Authorization Bypass in Dynamic Credential OAuth EndpointsEPSS 0.3%CVE-2026-49444HIGHn8n: Python sandbox escapeEPSS 0.4%CVE-2026-49465MEDIUMn8n: Git Node Clone and Push Operations Bypass File SandboxEPSS 0.5%CVE-2026-54304HIGHn8n: SecurityScorecard Node Leaks API Token to User-Controlled HostEPSS 0.4%CVE-2026-54307HIGHn8n: Credential Exfiltration via Permission BypassEPSS 0.3%CVE-2026-54302HIGHn8n: Stored XSS in Chat Trigger NodeEPSS 0.2%CVE-2026-54305HIGHn8n: Cross-Tenant Credential Takeover via Dynamic Credentials EE EndpointsEPSS 0.3%CVE-2026-54301HIGHn8n: Same-Origin XSS in Respond to Webhook NodeEPSS 0.2%CVE-2026-54306MEDIUMn8n: Prototype Pollution enables confused-deputy execution via public webhooksEPSS 0.3%CVE-2026-54308MEDIUMn8n: Missing Token Validation on Microsoft Agent 365 Trigger NodeEPSS 0.3%CVE-2026-54311MEDIUMn8n: Merge Node SQL Mode Prototype PollutionEPSS 0.3%CVE-2026-54310MEDIUMn8n: SQL Injection in Postgres v1/TimesclaeDB NodesEPSS 0.4%CVE-2026-56696MEDIUMOpenHarness - Prompt Injection via /issue and /pr_comments Slash CommandsEPSS 0.2%CVE-2026-54309HIGHn8n: n8n MCP Browser HTTP Transport Exposes Unauthenticated Browser-Control SessionsEPSS 0.4%