VYPR

Bitbucket Server

by Atlassian

CVEs (24)

  • CVE-2019-15005MedNov 8, 2019
    risk 0.28cvss 4.3epss 0.01

    The Atlassian Troubleshooting and Support Tools plugin prior to version 1.17.2 allows an unprivileged user to initiate periodic log scans and send the results to a user-specified email address due to a missing authorization check. The email message may contain configuration…

  • CVE-2017-18088MedFeb 15, 2018
    risk 0.28cvss 4.3epss 0.01

    Various plugin servlet resources in Atlassian Bitbucket Server before version 5.3.7 (the fixed version for 5.3.x), from version 5.4.0 before 5.4.6 (the fixed version for 5.4.x), from version 5.5.0 before 5.5.6 (the fixed version for 5.5.x), from version 5.6.0 before 5.6.3 (the…

  • CVE-2017-18036MedFeb 2, 2018
    risk 0.28cvss 4.3epss 0.01

    The Github repository importer in Atlassian Bitbucket Server before version 5.3.0 allows remote attackers to determine if a service they could not otherwise reach has open ports via a Server Side Request Forgery (SSRF) vulnerability.

  • CVE-2016-4320MedApr 10, 2017
    risk 0.28cvss 4.3epss 0.02

    Atlassian Bitbucket Server before 4.7.1 allows remote attackers to read the first line of an arbitrary file via a directory traversal attack on the pull requests resource.

Page 2 of 2