CVE-2026-42235: n8n Vulnerable to XSS via MCP OAuth client

April 29, 2026 (updated May 8, 2026)

An unauthenticated attacker could register a malicious MCP OAuth client with a crafted client_name. If a victim user authorized the OAuth consent dialog and a second user subsequently revoked that access, a toast notification would render the injected script. Clicking the link would execute arbitrary JavaScript in the victim’s authenticated n8n browser session, enabling credential and session token theft, workflow manipulation, or privilege escalation.

References

github.com/advisories/GHSA-537j-gqpc-p7fq
github.com/n8n-io/n8n
github.com/n8n-io/n8n/security/advisories/GHSA-537j-gqpc-p7fq
nvd.nist.gov/vuln/detail/CVE-2026-42235

Code Behaviors & Features

Detect and mitigate CVE-2026-42235 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →