Context-Inappropriate Capability
Medium
- Confidence
- 94% confidence
- Finding
- The n8n workflow executes a local exporter binary using a webhook-supplied model path, which exposes command-execution functionality to remote callers without any visible validation, authentication, or path restrictions. Even if the executable path itself is fixed, attacker-controlled arguments can be used to process unexpected files, access sensitive locations, or trigger dangerous behavior in the external tool, making this broader and riskier than simple QTO extraction.
