A vulnerability was found in n8n-io n8n up to 2.25.6/2.26.1 . It has been declared as critical . This affects an unknown part. Executing a manipulation can lead to authentication bypass by spoofing. This vulnerability appears as CVE-2026-54308 . The attack may be performed from remote. There is no available exploit. It is recommended to upgrade the affected component.