CVE-2025-49592

Name of the Vulnerable Software and Affected Versions: n8n versions prior to 1.98.0

Description: The issue is an Open Redirect vulnerability in the login flow, affecting authenticated users who can be redirected to untrusted domains after logging in. This is achieved by crafting malicious URLs with a misleading redirect query parameter, potentially leading to phishing attacks, credential or 2FA theft, and reputation risk. The vulnerability affects anyone hosting n8n and exposing the "/signin" endpoint to users.

Recommendations: For versions prior to 1.98.0, upgrade to version 1.98.0 or later, which introduces strict origin validation for redirect URLs, ensuring only same-origin or relative paths are allowed after login.