Atlassian Bitbucket Server 4.x < 4.7.1 Directory Traversal

Medium Nessus Network Monitor Plugin ID 9940


The remote Bitbucket server is affected by an Dierctory Traversal attack vector.


Versions of Bitbucket 4.x prior to 4.7.1 contain a flaw that allows traversing outside of a restricted path. The issue is due to the program not properly sanitizing user input, specifically path traversal style attacks (e.g. '../') when handling user repository pull requests. With a specially crafted request, an authenticated remote attacker can read the first line of arbitrary files.


Upgrade to Bitbucket version 4.7.1 or later.

See Also

Plugin Details

Severity: Medium

ID: 9940

Family: CGI

Published: 2017/02/08

Updated: 2019/03/06

Dependencies: 9566

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 6.5

Temporal Score: 5.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

CVSS v3.0

Base Score: 6.2

Temporal Score: 5.9

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:X/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:atlassian:bitbucket

Patch Publication Date: 2015/08/21

Vulnerability Publication Date: 2015/08/26

Reference Information

CVE: CVE-2016-4320