Severity:
HIGH RISK
(8.2)
Code Injection via Insecure GitHub Actions Workflow (CWE-94) in CoreShop Static Analysis Pipeline
CVE-2026-41249
Published:
Status:
Deferred
Summary
Affected Context
Exploit Preconditions
Why This Happens
Potential Impact
General Mitigation Guidance
How Teams Detect Issues Like This
Frequently Asked Questions
Source
NDV








