A vulnerability, which was classified as critical , has been found in n8n-io n8n up to 1.123.54/2.25.6/2.26.1 . Affected by this vulnerability is an unknown functionality of the component Specific Public API . This manipulation causes incorrect authorization. This vulnerability is tracked as CVE-2026-54307 . The attack is possible to be carried out remotely. No exploit exists. It is advisable to upgrade the affected component.