3 matches found
GitLab Community Edition 4.2.x - 5.4.0, 6.x - 6.2.2 Multiple Vulnerabilities
GitLab is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if description...
CVE-2013-4489
The Grit gem for Ruby, as used in GitLab 5.2 before 5.4.1 and 6.x before 6.2.3, allows remote authenticated users to execute arbitrary commands, as demonstrated by the search box for the GitLab code search feature...
CVE-2013-4489
CVE-2013-4489 affects the GitLab/Grit Ruby gem used in GitLab releases 5.2 before 5.4.1 and 6.x before 6.2.3. The vulnerability arises in the code search feature (app/contexts/search_context.rb): unsanitized input from the code search box can be evaluated by the shell, allowing remote authenticat...