Atlassian Bitbucket - Remote Command Injection

Atlassian Bitbucket Server and Data Center is susceptible to remote command injection. Multiple API endpoints can allow an attacker with read permissions to a public or private Bitbucket repository to execute arbitrary code by sending a malicious HTTP request, thus making it possible to obtain...

Exploit for Argument Injection in Atlassian Bitbucket

CVE-2022-36804: Bitbucket Remote Command Execution RCE...

EUVD-2017-9178

Malware in sbrugna...

EUVD-2020-6327

Malware in sbrugna...

EUVD-2017-9224

Malware in sbrugna...

EUVD-2020-6328

Malware in sbrugna...

EUVD-2017-9225

Malware in sbrugna...

EUVD-2020-23778

Malware in sbrugna...

EUVD-2017-9177

Malware in sbrugna...

EUVD-2018-17008

Malware in sbrugna...

EUVD-2016-5320

Malware in sbrugna...

EUVD-2018-11187

Malware in sbrugna...

Exploit for Argument Injection in Atlassian Bitbucket

CVE-2022-36804 - Atlassian Bitbucket Server and Data Center Comm...

io.jenkins.plugins:bitbucket-kubernetes-credentials (>=202.v15b_72a_698524 <=467.vdffa_a_9249dc5) potentially affected by CVE-2025-24398 via io.jenkins.plugins:atlassian-bitbucket-server-integration (>=3.4.2 <=4.1.1)

io.jenkins.plugins:atlassian-bitbucket-server-integration MAVEN version =3.4.2, =202.v15b72a698524, =467.vdffaa9249dc5 Source cves: CVE-2025-24398 Source advisory: OSV:GHSA-QJW6-XVRM-5F2H...

Atlassian Bitbucket < 7.21.16 / 8.8.7 / 8.9.4 / 8.10.3 / 8.11.3 / 8.12.2 RCE

The version of Atlassian Bitbucket installed on the remote host is affected by a remote code execution vulnerability as referenced in the vendor advisory. A remote, unauthenticated attacker can explioit this exposure by sending a carefully crafted yaml payload to the remote server. Note: Nessus h...

Atlassian Bitbucket < Improper Authorization Leakage Via ATST Plugin

According to its self-reported version number, the Atlassian Bitbucket application running on the remote host is is prior to version 6.6.0. It is, therefore, shipped with a vulnerable version of the Atlassian Troubleshooting and Support plugin ATST, which permitted unprivileged users to initialte...

Atlassian Bitbucket 6.9.x < 6.9.1 Multiple Vulnerabilities

According to its self-reported version number, the Atlassian Bitbucket application running on the remote host is prior to 5.16.11, 6.0.x prior to 6.0.11, 6.1.x prior to 6.1.9, 6.2.x prior to 6.2.7, 6.3.x prior to 6.3.6, 6.4.x prior to 6.4.4, 6.5.x prior to 6.5.3, 6.6.x prior to 6.6.3, 6.7.x prior...

Atlassian Bitbucket 6.5.x < 6.5.3 Multiple Vulnerabilities

According to its self-reported version number, the Atlassian Bitbucket application running on the remote host is prior to 5.16.11, 6.0.x prior to 6.0.11, 6.1.x prior to 6.1.9, 6.2.x prior to 6.2.7, 6.3.x prior to 6.3.6, 6.4.x prior to 6.4.4, 6.5.x prior to 6.5.3, 6.6.x prior to 6.6.3, 6.7.x prior...

Atlassian Bitbucket 6.8.x < 6.8.2 Multiple Vulnerabilities

According to its self-reported version number, the Atlassian Bitbucket application running on the remote host is prior to 5.16.11, 6.0.x prior to 6.0.11, 6.1.x prior to 6.1.9, 6.2.x prior to 6.2.7, 6.3.x prior to 6.3.6, 6.4.x prior to 6.4.4, 6.5.x prior to 6.5.3, 6.6.x prior to 6.6.3, 6.7.x prior...

Atlassian Bitbucket 6.4.x < 6.4.4 Multiple Vulnerabilities

According to its self-reported version number, the Atlassian Bitbucket application running on the remote host is prior to 5.16.11, 6.0.x prior to 6.0.11, 6.1.x prior to 6.1.9, 6.2.x prior to 6.2.7, 6.3.x prior to 6.3.6, 6.4.x prior to 6.4.4, 6.5.x prior to 6.5.3, 6.6.x prior to 6.6.3, 6.7.x prior...