Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2013-4489

The Grit gem for Ruby, as used in GitLab 5.2 before 5.4.1 and 6.x before 6.2.3, allows remote authenticated users to execute arbitrary commands, as demonstrated by the search box for the GitLab code search feature.

  • Published: May 17, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-4489
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/Au:S/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
gitlab / gitlab 6.2.0 6.2.0.x
gitlab / gitlab 6.2.2 6.2.2.x
gitlab / gitlab 5.2.0 5.2.0.x
gitlab / gitlab 6.2.1 6.2.1.x
gitlab / gitlab 6.0.0 6.0.0.x
gitlab / gitlab 6.1.0 6.1.0.x
gitlab / gitlab 5.3.0 5.3.0.x
gitlab / gitlab 5.4.0 5.4.0.x