Package impact
npm / n8n-mcp
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-45582 | medium | 6.5 | 6.5 | 11d ago | n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to 2.51.3, the workflow telemetry sanitizer could retain partial fragments of … | |||
| CVE-2026-41495 | medium | 5.3 | 5.3 | 21d ago | n8n-MCP Logs Sensitive Request Data on Unauthorized /mcp Requests | |||
| CVE-2026-42282 | medium | 4.3 | 4.3 | 21d ago | n8n-MCP: Sensitive MCP tool-call arguments logged on authenticated requests in HTTP mode |