CVE-2026-44694

UNKNOWN 0.0

n8n-MCP: Authenticated SSRF in n8n-mcp webhook and API client paths

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. From version 2.18.7 to before version 2.50.2, there is an authenticated server-side request forgery vulnerability affecting the webhook trigger tools, the n8n API client (N8N_API_URL), and per-request URLs supplied via the x-n8n-url header in multi-tenant HTTP mode. This issue has been patched in version 2.50.2.

CWE	CWE-367 CWE-918
Vendor	czlonkowski
Product	n8n-mcp
Published	May 8, 2026

Stay Ahead of the Next One

Get instant alerts for czlonkowski n8n-mcp

Be the first to know when new unknown vulnerabilities affecting czlonkowski n8n-mcp are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

czlonkowski / n8n-mcp

>= 2.18.7, < 2.50.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/czlonkowski/n8n-mcp/security/advisories/GHSA-cmrh-wvq6-wm9r github.com: https://github.com/czlonkowski/n8n-mcp/commit/bcaba839409d470abeb4a6ad9b361b553a1098eb github.com: https://github.com/czlonkowski/n8n-mcp/releases/tag/v2.50.2