CVE-2026-47174 CRITICAL

CVE-2026-47174: Duck Site: Untrusted pull request code can trigger privileged production deployment

Vendor Duck-Organization
Product duck-site
Weakness CWE-829 · Inclusion from untrusted sphere
Published June 11, 2026
Last update June 11, 2026

CVSS base score

9.5/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

What the vulnerability does

01Description

In Duck Site before version 1.0.1, the repository has a deploy workflow that runs after the build workflow completes. The build workflow runs on pull requests, while the deploy workflow runs with package-write permissions and deployment secrets. If an attacker can make a pull request build satisfy the deploy workflow’s main branch condition, the deploy job checks out the triggering workflow commit, builds it into a Docker image, pushes it as latest, and triggers Dokploy deployment. This can allow attacker-controlled pull request code to become the deployed production site image without being merged. This issue has been patched in version 1.0.1.

Key dates

02Disclosure timeline

June 11, 2026 CVE published
June 11, 2026 Record updated