Bug Bytes #201 – Path Traversal, Prompt Injection, and GitHub Actions

By travisintigriti

May 23, 2023

Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps us up to date with a comprehensive list of write-ups, tools, tutorials and resources.

This issue covers the weeks from May 15th to May 21st


Intigriti News

From my notebook

  1. Exposing iCloud user’s Name, phone numbers, and email addresses

  2. How to turn a write-based path traversal into a critical?

  3. Bug Bounty Changed My Life!

  4. the story of “i915” bug, ChromeOS + Intel bounty programs, and beyond : pi3 blog

  5. From GitHub to Account Takeover: Misconfigured Actions Place GCP & AWS Accounts at Risk – Rezonate

You may also like