Impact
n8n is an open source workflow automation platform. Prior to 2.24.0, an endpoint in the Meta and Microsoft Teams trigger nodes reflects a query parameter into the HTTP response without sanitization or Content‑Security‑Policy headers, enabling reflected XSS in the n8n origin when a logged‑in user visits a crafted URL. This is a CWE‑79 reflected cross‑site scripting vulnerability, fixed in 2.24.0.
Affected Systems
The open‑source workflow automation platform n8n from n8n‑io is affected. All releases prior to version 2.24.0 contain the flaw; version 2.24.0 and later include the fix.
Risk and Exploitability
The CVSS score is 6.8, indicating moderate severity. The likely attack scenario involves an authenticated user being directed to a crafted URL that triggers the vulnerable endpoint; this inference comes from the fact that the endpoint reflects a query parameter into the HTTP response only for logged‑in users. Because the endpoint requires authentication and exploitation relies on the victim clicking a malicious link, this is a social‑engineering attack. The EPSS score is not available, so precise exploitation probability cannot be determined, and the vulnerability is not listed in the CISA KEV catalog.
OpenCVE Enrichment
Github GHSA