Atlassian Bitbucket Server 4.x < 4.7.1 Directory Traversal

Medium Nessus Network Monitor Plugin ID 9940


The remote Bitbucket server is affected by an Dierctory Traversal attack vector.


Versions of Bitbucket 4.x prior to 4.7.1 contain a flaw that allows traversing outside of a restricted path. The issue is due to the program not properly sanitizing user input, specifically path traversal style attacks (e.g. '../') when handling user repository pull requests. With a specially crafted request, an authenticated remote attacker can read the first line of arbitrary files.


Upgrade to Bitbucket version 4.7.1 or later.

See Also

Plugin Details

Severity: Medium

ID: 9940

File Name: 9940.prm

Family: CGI

Published: 2017/02/08

Modified: 2017/04/04

Dependencies: 9566

Risk Information

Risk Factor: Medium


Base Score: 6.5

Temporal Score: 5.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C


Base Score: 6.2

Temporal Score: 5.9


Temporal Vector: CVSS3#E:X/RL:O/RC:C

Vulnerability Information

Patch Publication Date: 2015/08/21

Vulnerability Publication Date: 2015/08/26

Reference Information

CVE: CVE-2016-4320

OSVDB: 140113