CVE-2013-4489 Information

Description

The Grit gem for Ruby as used in GitLab 5.2 before 5.4.1 and 6.x before 6.2.3 allows remote authenticated users to execute arbitrary commands as demonstrated by the search box for the GitLab code search feature.

Reference

https://www.gitlab.com/2013/11/04/gitlab-ce-6-2-and-5-4-security-release/