{"vulnerability": "CVE-2026-54052", "sightings": [{"uuid": "aa5d58d6-b78e-46fc-9411-d56cc9c9e002", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54052", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqn7siy2dj2q", "content": "CVE-2026-54052 - n8n-mcp\nIn multi-tenant n8n-MCP deployments, an authenticated tenant could access and delete other tenants' workflow backup data. This is fixed in version 2.56.1. To protect your data, upgrade to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#n8nmcp #npm #CVE #infosec", "creation_timestamp": "2026-07-14T22:08:05.683764Z"}, {"uuid": "d8c1412a-97b8-4386-b0ea-e1da91168c5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54052", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqppubmqtj2w", "content": "\ud83d\udd34 CVE-2026-54052 - Critical (9.9)\n\nn8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-54052/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-15T22:00:44.757823Z"}, {"uuid": "6d526613-d392-4707-b14c-255c77ea1161", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54052", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqpyhctsqt2x", "content": "CVE-2026-54052 - n8n-MCP: Cross-tenant access to workflow version backups in multi-tenant HTTP deployments\nCVE ID : CVE-2026-54052\n \n Published : July 15, 2026, 9:16 p.m. | 1\u00a0hour, 17\u00a0minutes ago\n \n Description : n8n-MCP is an MCP server that provides AI assistants access to n...", "creation_timestamp": "2026-07-16T00:34:33.321935Z"}]}