CVE-2016-4320
CVE-2016-4320 affects Atlassian Bitbucket Server prior to 4.7.1. A directory traversal in the pull requests resource allows remote attackers to read the first line of an arbitrary file, leaking partial confidentiality. The issue is triggered via a directory traversal path and is limited to the fi...