CVE-2016-4320

Summary

Atlassian Bitbucket Server before 4.7.1 allows remote attackers to read the first line of an arbitrary file via a directory traversal attack on the pull requests resource.

Affected Software

VendorProductVersion RangeStatus
n/aAtlassian Bitbucket Server before 4.7.1Atlassian Bitbucket Server before 4.7.1affected

Weaknesses

  • directory traversal

ADP Enrichment

CVE Program Container

Additional References

References