Ni8mare on Automation Street: When Workflows Turn Into an Attack Path

Ni8mare (CVE-2026-21858) is a critical, unauthenticated vulnerability in self-hosted n8n that leverages content-type parsing inconsistencies on public webhook/form endpoints to access configuration and cryptographic material, forge administrative sessions, and achieve remote code execution through workflow nodes; the advisory urges immediate upgrades (n8n 1.121.0+), reduction of external exposure, credential rotation, and comprehensive compromise assessments to mitigate likely rapid weaponization.