CVE-2025-56265

HIGH

N8n < 1.107.0 - Unrestricted File Upload

Title source: rule

Description

An arbitrary file upload vulnerability in the Chat Trigger component of N8N v1.95.3, v1.100.1, and v1.101.1 allows attackers to execute arbitrary code via uploading a crafted HTML file.

References (3)

Core 3

Core References

Third Party Advisory

https://github.com/nikolas-ch/CVEs/blob/main/N8N/N8N_v1.100.1/ChatTrigger_StoredXSSviaUnrestrictedFileUpload/StoredXSSviaUnristrictedFileUpload.txt

View Writeup ZIP pw:eip

Exploit

https://github.com/nikolas-ch/CVEs/tree/main/N8N/N8N_v1.100.1

Exploit

https://github.com/nikolas-ch/CVEs/tree/main/N8N/N8N_v1.100.1/ChatTrigger_StoredXSSviaUnrestrictedFileUpload

Scores

CVSS v3 8.8

EPSS 0.0009

EPSS Percentile 25.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-434

Status published

Products (4)

n8n/n8n 1.95.3

n8n/n8n 1.100.1

n8n/n8n 1.101.1

n8n/n8n-nodes-langchain 0 - 1.107.0npm

Published Sep 08, 2025

Tracked Since Feb 18, 2026