In Atlassian Bitbucket Server and Data Center there is a command injection vulnerability in multiple API endpoints. This TTP sends a curl request that will attempt to execute a command `cat /etc/passwd` on the remote host. An attacker with read permissions on a public or private Bitbucket repository can execute arbitrary code by sending a malicious HTTP request.
View Command
To view this TTPs command, you must be logged in with a professional or enterprise license.