CVE-2025-61914

Name of the Vulnerable Software and Affected Versions n8n versions prior to 1.114.0

Description n8n is a workflow automation platform. A stored Cross-Site Scripting (XSS) issue may occur when using the “Respond to Webhook” node in versions before 1.114.0. If this node responds with HTML content containing executable scripts, the payload may execute directly in the top-level window. This can allow a malicious actor with workflow creation permissions to execute arbitrary JavaScript in the n8n editor interface.

Recommendations Restrict workflow creation and modification privileges to trusted users only. Avoid using untrusted HTML responses in the “Respond to Webhook” node. Use an external reverse proxy or HTML sanitizer to filter responses that include executable scripts.