Atlassian Bitbucket Server 4.x < 4.7.1 Directory Traversal

medium Nessus Network Monitor Plugin ID 9940


The remote Bitbucket server is affected by an Dierctory Traversal attack vector.


Versions of Bitbucket 4.x prior to 4.7.1 contain a flaw that allows traversing outside of a restricted path. The issue is due to the program not properly sanitizing user input, specifically path traversal style attacks (e.g. '../') when handling user repository pull requests. With a specially crafted request, an authenticated remote attacker can read the first line of arbitrary files.


Upgrade to Bitbucket version 4.7.1 or later.

See Also

Plugin Details

Severity: Medium

ID: 9940

Family: CGI

Published: 2/8/2017

Updated: 3/6/2019

Risk Information


Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C


Risk Factor: Medium

Base Score: 6.3

Temporal Score: 6

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:X/RL:O/RC:C

Vulnerability Information

CPE: cpe:2.3:a:atlassian:bitbucket:*:*:*:*:*:*:*:*

Patch Publication Date: 8/21/2015

Vulnerability Publication Date: 8/26/2015

Reference Information

CVE: CVE-2016-4320