PT-2026-53775 · Github Actions · Gouef/Githubtoplanguages

Published

2026-06-19

·

Updated

2026-06-19

CVSS v4.0

7.1

High

VectorAV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

Summary

A GitHub Actions workflow is vulnerable to command injection through the issue title.
The workflow is triggered when an issue is opened or closed, and it directly inserts github.event.issue.title into a Bash variable assignment. If an issue title contains command substitution syntax, Bash evaluates it during the workflow run.

Details

The vulnerable workflow is:
.github/workflows/discord-issue.yml
The issue title is directly interpolated into a Bash script:
bash
ISSUE TITLE="${{ github.event.issue.title || github.event.pull request.title }}"
Because GitHub Actions expressions are expanded before Bash executes the script, an attacker-controlled issue title containing command substitution syntax can be evaluated by the shell.
In the original workflow, the resulting value is then included in a Discord notification payload:
bash
curl -H "Content-Type: application/json" 
 -X POST 
 -d "{"username": "GitHub Bot", "content": "${STATUS} created by **${AUTHOR}**: **${ISSUE TITLE}**
🔗 ${ISSUE URL}"}" 
 "$DISCORD WEBHOOK"

PoC

For safety, I reproduced this only in my fork. I did not trigger the original repository’s Discord webhook.
I kept the vulnerable Bash assignment unchanged and replaced the Discord webhook request with echo statements to observe the result safely.
Test issue title:
text
title: $(whoami)
Observed workflow log:
text
ISSUE TITLE=title: runner
This confirms that $(whoami) was executed on the GitHub Actions runner before the value would be sent to Discord.

Impact

Any user who can open an issue may be able to execute shell commands on the GitHub Actions runner.
In practice, this means an attacker could create an issue with a crafted title, cause the workflow to execute a shell command, and have the command output included in the Discord notification content. This can be used to manipulate Discord notifications, spoof trusted GitHub bot messages, or repeatedly trigger unwanted notifications.
More importantly, the command runs in a workflow environment where a Discord webhook secret is configured. Depending on repository settings and workflow permissions, this may put workflow secrets or other environment data at risk.

Suggested Fix

Do not insert issue titles directly into Bash scripts.
Pass the title through an environment variable instead:
yaml
env:
 ISSUE TITLE: ${{ github.event.issue.title }}
run: |
 issue title="$ISSUE TITLE"
Also avoid eval, unquoted variable expansion, or shell execution patterns involving user-controlled issue content.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

GHSA-C3XH-98XP-6QHF

Affected Products

Gouef/Githubtoplanguages