Filtered by vendor Atlassian Subscriptions
Filtered by product Bitbucket Auto Unapprove Plugin Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2017-16857 1 Atlassian 1 Bitbucket Auto Unapprove Plugin 2024-11-21 N/A
It is possible to bypass the bitbucket auto-unapprove plugin via minimal brute-force because it is relying on asynchronous events on the back-end. This allows an attacker to merge any code into unsuspecting repositories. This affects all versions of the auto-unapprove plugin, however since the auto-unapprove plugin is not bundled with Bitbucket Server it does not affect any particular version of Bitbucket.