Back to directory
WRITEUP #216

Github Actions Exploitation: Untrusted Input

AI / LLMCI/CDSupply chain attackSecurity code review
by@hugow_vincent(Hugo Vincent)
Program
MicrosoftExcalidrawFreeRDPAngularAutoGPTAnt-DesignCypressApache Doris
Published
Jul 2, 2024
Added to HackDex
Jul 8, 2024
Read Full Writeuphttps://www.synacktiv.com/publications/github-actions-exploitation-untrusted-input.html
RELATED WRITEUPS
Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk
AI / LLMCI/CD
Github Actions Exploitation: Dependabot
OtherCI/CD
GitHub Actions Exploitation: Repo Jacking And Environment Manipulation
AI / LLMRepojacking
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Unmasking Harmful Content in a Medical Chatbot: A Red Team Perspective
AI / LLMAI

Built with ❤️ by Shubham Rawat