Exploit/PoC: https://github.com/wioui/n8n-CVE-2025-68613-exploit
n8n has a critical security flaw that lets authenticated users execute arbitrary code through its workflow expression system. When users configure workflows, the expressions they provide can sometimes be evaluated without proper isolation from the underlying runtime environment.
0:00
/1:02
![[Video] CVE-2025-26529: Moodle XSS to RCE Exploit](/content/images/size/w1304/format/webp/2026/01/moodle_xss.png)
