HarborGuardharborguardDatabase
Back to search
HIGHCVE-2026-41249Published Modified CNA GitHub_M

CVE-2026-41249: CoreShop Vulnerable to Remote Code Execution (RCE) via Insecure `pull_request_target` Configuration

CoreShop is a Pimcore enhanced eCommerce solution. In versions 5.0.1 through 5.1.0-beta.1,, the GitHub Actions workflow (`.github/workflows/static.yml`) uses the `pull_request_target` trigger but dangerously checks out the unverified code from the pull request head (`ref: ${{ github.event.pull_request.head.ref }}`). Subsequently, it executes a script (`bin/console`) from this untrusted checkout. This allows any external attacker to achieve Remote Code Execution (RCE) on the GitHub Actions runner simply by submitting a malicious Pull Request. Also known as a "Pwn Request" vulnerability. As of time of publication, `pull_request_target` is still in the file.

Metrics

CVSS v3.1
8.2
Severity
HIGH
Fixed in
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

This is a remote code execution vulnerability in CoreShop, a Pimcore-based eCommerce framework, affecting versions 5.0.1 through 5.1.0-beta.1. The flaw exists in a GitHub Actions workflow file that uses the `pull_request_target` trigger while checking out and executing untrusted code from an external pull request's branch. Any unauthenticated external attacker can submit a crafted pull request to execute arbitrary commands on the GitHub Actions runner, a class of attack commonly called a 'Pwn Request'. No fix version has been published as of the CVE record date; HarborGuard tracks this advisory and will surface a patched-image rebuild the moment an upstream fix is available.

HarborGuard Coverage

Detection

Detection for CVE-2026-41249 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against all customer images, including custom-built images derived from affected CoreShop versions. Any image carrying a vulnerable version of CoreShop will surface in the affected-image list for that customer's registry and CI pipeline scans.

Available
Triage

HarborGuard scores this CVE at CVSS 8.2 HIGH and weights it against each environment's configured compliance policy, escalating findings that breach policy thresholds. Triage tickets are routed to the appropriate team inbox within each customer organization based on image ownership and policy assignment.

Available
Patch

Because no upstream fix has been published, HarborGuard re-checks the CoreShop advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment a fix version is released. For customers with auto-remediation enabled, the rebuild, regression-test run, and PR against affected workloads will be initiated without manual intervention once an upstream patch exists.

Pending upstream

Exploit Conditions

  • Network reachabilityRequired

    The attacker submits a pull request to the public repository over the network, triggering the vulnerable workflow without any need for prior access to the target infrastructure.

  • AuthenticationNot required

    No account credentials or elevated privileges are required; any unauthenticated external user with the ability to open a pull request can trigger the exploit.

  • Victim interactionNot required

    No human victim needs to click a link or take any action; the GitHub Actions workflow fires automatically on pull request submission.

  • Attack complexityDetail

    Exploit reliability is high and condition-free; the attacker only needs to craft a malicious pull request branch, with no race conditions or special environmental factors required.

Blast Radius

  • The attacker executes arbitrary commands on the GitHub Actions runner, giving full control over the CI build environment for the duration of the job.
  • Secrets and tokens available to the runner, including repository GITHUB_TOKEN values, deployment keys, and any injected CI secrets, are exposed and can be exfiltrated.
  • The attacker can read the full contents of the repository, including private branches, configuration files, and any embedded credentials checked into source.
  • Supply-chain tampering is possible: the attacker can alter build artifacts, inject malicious code into packages, or push changes if the runner token carries write permissions.

How HarborGuard Handles This

Available on HarborGuard: detection for CVE-2026-41249 is active across customer registries and pipelines, flagging any image built from an affected CoreShop version (5.0.1 through 5.1.0-beta.1). Because no upstream patch exists at the time of this writing, HarborGuard monitors the CoreShop advisory and the GitHub Security Advisory database on every ingest cycle. As a compensating control, teams can enforce a network-policy rule that restricts outbound egress from CI runners to reduce the blast radius of a compromised runner, and can audit workflow files for `pull_request_target` triggers that check out PR head code. Where compliance policy permits, a patched-image rebuild and auto-remediation PR will be made available to customers with auto-remediation enabled the moment CoreShop publishes a fix, with no manual steps required.

See how HarborGuard automates this
Affected packages
  • coreshop / CoreShop
    >= 5.0.1, <= 5.1.0-beta.1
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
References