The Grit gem for Ruby, as used in GitLab 5.2 before 5.4.1 and 6.x before 6.2.3, allows remote authenticated users to execute arbitrary commands, as demonstrated by the search box for the GitLab code search feature.
References
Link | Resource |
---|---|
https://www.gitlab.com/2013/11/04/gitlab-ce-6-2-and-5-4-security-release/ | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2014-05-17 20:55
Updated : 2024-02-28 12:20
NVD link : CVE-2013-4489
Mitre link : CVE-2013-4489
CVE.ORG link : CVE-2013-4489
JSON object : View
Products Affected
gitlab
- gitlab
CWE