virus logo Intrusion Prevention

n8n.formWebhook.Information.Disclosure

description-logoDescription

This indicates an attack attempt against an Information Disclosure vulnerability in n8n.
The vulnerability is due to improper validation of certain form-based workflow requests. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to the target server. Successfully exploiting this vulnerability could result in unauthorized access to server-side files and exposure of sensitive information, potentially enabling further compromise depending on deployment configuration.

affected-products-logoAffected Products

n8n versions 1.65.0 through 1.120.x

Impact logoImpact

Information Disclosure: attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://github.com/n8n-io/n8n/security/advisories/GHSA-v4pr-fm98-w9pg

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2026-03-02 35.176
Modified
 Sig Added
2026-02-23 35.172
Modified
 Sig Added
2026-01-21 35.155
Modified
 Default_action:pass:drop
2026-01-12 35.149
New
ID 59935
Created Jan 12, 2026
Updated Mar 02, 2026
CVE ID
Tags Threat Signal
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Exploit Prediction Score 7.06%
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App Other
Profile Type Information Disclosure