CVE-2025-68613 RCE n8n #20809
Description
Summary
Suggestion to add a Metasploit exploit module for CVE-2025-68613, a critical authenticated Remote Code Execution vulnerability in the n8n workflow automation platform.
Basic example
https://nvd.nist.gov/vuln/detail/CVE-2025-68613
Motivation
CVE-2025-68613 affects n8n versions >= 0.211.0 and < 1.120.4 / 1.121.1 / 1.122.0 and allows authenticated users to achieve remote code execution via insufficient isolation in the workflow expression evaluation engine.
User-supplied expressions may be evaluated in an unsafe Node.js runtime context, enabling execution of arbitrary system commands with the privileges of the n8n process.