Severity by source
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Primary rating from GitHub Advisory · only source for this CVE.
CVSS VectorGitHub Advisory
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Lifecycle Timeline
3DescriptionGitHub Advisory
OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses websites, apps, git repositories, and more. Prior to 2.1.2, .github/workflows/pre-commit-fix.yaml uses pull_request_target (privileged trigger) but checks out and executes code directly from the attacker's fork, enabling RCE with write permissions. This vulnerability is fixed in 2.1.2.
AnalysisAI
Remote code execution in OWASP BLT versions prior to 2.1.2 enables attackers to execute arbitrary code with repository write permissions via malicious GitHub pull requests. The vulnerability exploits a GitHub Actions workflow misconfiguration where pull_request_target triggers execute code directly from attacker-controlled forks without proper validation. EPSS data not available; no confirmed active exploitation (not in CISA KEV); publicly disclosed via GitHub Security Advisory GHSA-cgvj-qg2h-cqfh.
Technical ContextAI
This is a GitHub Actions workflow security misconfiguration (CWE-94: Improper Control of Generation of Code). The affected .github/workflows/pre-commit-fix.yaml workflow uses the pull_request_target trigger, which runs in the context of the base repository with access to repository secrets and write permissions. Unlike pull_request triggers that run in an isolated fork context, pull_request_target has privileged access. When this privileged workflow checks out and executes code directly from an attacker's pull request fork without validation, it creates a code injection vector. The attacker controls the code being executed in the privileged context, enabling arbitrary command execution with the workflow's permissions, including repository write access, secret access, and ability to modify GitHub releases, issues, and source code.
RemediationAI
Upgrade OWASP BLT to version 2.1.2 or later, which contains the vendor-released patch fixing the workflow misconfiguration. The fix modifies .github/workflows/pre-commit-fix.yaml to properly isolate pull request code execution from privileged contexts. Organizations unable to immediately upgrade should implement compensating controls: disable the pre-commit-fix.yaml workflow entirely by removing or renaming the file, manually review all pull requests for suspicious workflow modifications before merging, restrict repository write access to trusted maintainers only (reducing UI:R attack surface), and enable GitHub branch protection rules requiring approval from code owners before workflow execution. Note that disabling the workflow removes automated pre-commit fixing functionality, requiring manual code quality checks. Review GitHub Actions audit logs for any suspicious workflow executions from external contributors since initial deployment. Advisory and patch details: https://github.com/OWASP-BLT/BLT/security/advisories/GHSA-cgvj-qg2h-cqfh.
Same weakness CWE-94 – Code Injection
View allSame technique Code Injection
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-29126