ADVERTISEMENT

When workflows go rogue: critical n8n vulnerability opens door to system commands

A critical vulnerability has been discovered in n8n, a popular open-source workflow automation platform, enabling authenticated attackers to execute arbitrary commands on host systems.

security-vulnerability-neightn

Image by Cybernews.

Gintaras Radauskas
Gintaras Radauskas Senior Journalist
Jan 7, 2026 2 min read
jurgita justinasv Izabelė Pukėnaitė vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.
ADVERTISEMENT
Organizations running affected versions should immediately upgrade to version 2.0.0 or later, n8n said.​
  • Disable the Code Node by setting the environment variable NODES_EXCLUDE: “[\”n8n-nodes-base.code\”]”
  • Disable Python support in the Code node by setting the environment variable N8N_PYTHON_ENABLED=false, which was introduced in n8n version
  • 1.104.0Configure n8n to use the task runner based Python sandbox via the N8N_RUNNERS_ENABLED and N8N_NATIVE_PYTHON_RUNNER environment variables

ADVERTISEMENT