Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

CVE-2026-0863

Two n8n sandbox escape flaws allow remote code execution

News, Research, Vulnerabilities

January 29, 2026

JFrog Security Research disclosed two eval injection flaws in n8n that can bypass sandboxes and allow remote code execution. One is rated CVSS 9.9. Users are advised to update affected versions.

About
Editorial Policy
Privacy
Contact