A vulnerability identified as problematic has been detected in n8n-io n8n up to 1.123.54/2.25.6/2.26.0 . Impacted is an unknown function of the component Node Attached SecurityScorecard API . This manipulation causes information disclosure. This vulnerability is handled as CVE-2026-54304 . The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.