Description
n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows could supply a crafted parameters to the TimescaleDB and/or legacy Postgres v1 node's allowing arbitrary SQL to be injected and executed against the connected database within the privileges of the configured database account. This vulnerability is fixed in 2.25.7 and 2.26.2.
Published: 2026-06-23
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

n8n is an open‑source workflow automation platform. Prior to versions 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows could supply crafted parameters to the TimescaleDB and/or legacy Postgres v1 node, allowing arbitrary SQL to be injected and executed against the connected PostgreSQL database with the privileges of the database account configured for the node. The vulnerability is fixed in those releases.

Affected Systems

The vulnerability exists in n8n versions prior to 2.25.7 (2.25.x series) and prior to 2.26.2 (2.26.x series). The affected component is the Postgres v1 node and TimescaleDB node within the workflow engine when they are configured to connect to a PostgreSQL database.

Risk and Exploitability

The CVSS score of 6.5 indicates moderate severity. EPSS is not available, and the flaw is not listed in the CISA KEV catalog. Exploitation requires authentication and sufficient workflow‑modification privileges; based on the description, it is inferred that the attack vector is internal. Once these conditions are met, an attacker can inject and execute arbitrary SQL, with the commands running using the privileges of the database account configured for the node. This allows direct alteration of database content, but the impact remains confined to database operations and does not provide broader system compromise.

Generated by OpenCVE AI on June 24, 2026 at 11:53 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade n8n to version 2.25.7 or later (or 2.26.2 for the 2.26.x series).
  • Restrict workflow creation and modification rights to trusted users only.
  • Review and tighten the configuration of database connections used by the Postgres v1 and TimescaleDB nodes.

Generated by OpenCVE AI on June 24, 2026 at 11:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-c37g-w77q-m4vp n8n: SQL Injection in Postgres v1/TimesclaeDB Nodes
History

Wed, 24 Jun 2026 16:15:00 +0000

Type Values Removed Values Added
First Time appeared N8n
N8n n8n
Vendors & Products N8n
N8n n8n

Tue, 23 Jun 2026 15:45:00 +0000

Type Values Removed Values Added
Description n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows could supply a crafted parameters to the TimescaleDB and/or legacy Postgres v1 node's allowing arbitrary SQL to be injected and executed against the connected database within the privileges of the configured database account. This vulnerability is fixed in 2.25.7 and 2.26.2.
Title n8n: SQL Injection in Postgres v1/TimesclaeDB Nodes
Weaknesses CWE-89
References
Metrics cvssV4_0

{'score': 6.5, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-23T15:46:41.035Z

Reserved: 2026-06-12T18:42:02.222Z

Link: CVE-2026-54310

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T16:00:06Z

Weaknesses
  • CWE-89

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')