Thegrandpew

**Name of the Vulnerable Software and Affected Versions** Atlassian Bitbucket Server and Data Center versions 7.0.0 through 7.6.17 Atlassian Bitbucket Server and Data Center versions 7.7.0 through 7.17.10 Atlassian Bitbucket Server and Data Center versions 7.18.0 through 7.21.4 Atlassian Bitbucket Server and Data Center versions 8.0.0 through 8.0.3 Atlassian Bitbucket Server and Data Center versions 8.1.0 through 8.1.3 Atlassian Bitbucket Server and Data Center versions 8.2.0 through 8.2.2 Atlassian Bitbucket Server and Data Center versions 8.3.0 through 8.3.1 **Description** The issue allows remote attackers with read permissions to a public or private Bitbucket repository to execute arbitrary code by sending a malicious HTTP request. This is due to errors in processing input data in the API interface of the tool for hosting, managing, and collaborating on Git code. The vulnerability was reported via the Bug Bounty Program. **Recommendations** For versions 7.0.0 through 7.6.17, update to version 7.6.17 or later. For versions 7.7.0 through 7.17.10, update to version 7.17.10 or later. For versions 7.18.0 through 7.21.4, update to version 7.21.4 or later. For versions 8.0.0 through 8.0.3, update to version 8.0.3 or later. For versions 8.1.0 through 8.1.3, update to version 8.1.3 or later. For versions 8.2.0 through 8.2.2, update to version 8.2.2 or later. For versions 8.3.0 through 8.3.1, update to version 8.3.1 or later.

**Name of the Vulnerable Software and Affected Versions** Electron versions prior to 18.0.0-beta.6 Electron versions prior to 17.2.0 Electron versions prior to 16.2.6 Electron versions prior to 15.5.5 **Description** The issue is related to the `nodeIntegrationInSubFrames` parameter in Electron, which can lead to information disclosure. A renderer with JavaScript execution can obtain access to a new renderer process with `nodeIntegrationInSubFrames` enabled, allowing effective access to `ipcRenderer`. This access can compromise the application or user if the application exposes IPC messages without IPC `senderFrame` validation that perform privileged actions or return confidential data. **Recommendations** For versions prior to 18.0.0-beta.6, update to version 18.0.0-beta.6 or later. For versions prior to 17.2.0, update to version 17.2.0 or later. For versions prior to 16.2.6, update to version 16.2.6 or later. For versions prior to 15.5.5, update to version 15.5.5 or later. As a temporary workaround, ensure that all IPC message handlers appropriately validate `senderFrame`.

**Name of the Vulnerable Software and Affected Versions** Element Desktop versions prior to 1.9.7 **Description** The issue concerns a remote program execution bug that requires user interaction, involving clicking on a malicious link followed by another button click. To the best of available knowledge, this issue has not been exploited in the wild. If successfully exploited, it allows an attacker to specify a file path of a binary on the victim's computer for execution, although the attacker cannot specify program arguments. In certain configurations, the attacker may be able to specify a URI instead of a file path, potentially leading to further vulnerabilities in platform mechanisms and arbitrary code execution. **Recommendations** For Element Desktop versions prior to 1.9.7, upgrade to version 1.9.7 or later at your earliest convenience to resolve the issue. As a temporary workaround, consider avoiding clicking on suspicious links and buttons to minimize the risk of exploitation. Restrict access to potentially vulnerable configurations to reduce the risk of further vulnerabilities being exploited.

**Name of the Vulnerable Software and Affected Versions** python-markdown2 versions 2.3.8 and earlier **Description** The issue arises from the mishandling of element names, which can lead to XSS attacks unless a w+ match succeeds. An example of a potential attack involves using element names with special characters, such as `elementname@` or `elementname-`, in combination with an `onclick` attribute. **Recommendations** For python-markdown2 versions 2.3.8 and earlier, update to a version that properly handles element names to prevent XSS attacks.