Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:gem/gitlab-grit@2.5.0
purl pkg:gem/gitlab-grit@2.5.0
Next non-vulnerable version 2.6.1
Latest non-vulnerable version 2.6.1
Risk 3.1
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-8p24-6g5t-fqdq
Aliases:
CVE-2013-4489
GHSA-95xq-v4m2-fq3r
OSV-99370
Repository#grep accepts Unix pipes by default See CVE-2013-4489 advisory for GitLab: Remote code execution vulnerability in the code search feature http://seclists.org/oss-sec/2013/q4/224
2.6.1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:31:34.470889+00:00 GitLab Importer Affected by VCID-8p24-6g5t-fqdq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/gitlab-grit/CVE-2013-4489.yml 38.4.0
2026-04-16T17:35:19.913648+00:00 Ruby Importer Affected by VCID-8p24-6g5t-fqdq https://github.com/rubysec/ruby-advisory-db/blob/master/gems/gitlab-grit/CVE-2013-4489.yml 38.4.0
2026-04-11T21:41:55.597323+00:00 GitLab Importer Affected by VCID-8p24-6g5t-fqdq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/gitlab-grit/CVE-2013-4489.yml 38.3.0
2026-04-11T21:32:03.182500+00:00 Ruby Importer Affected by VCID-8p24-6g5t-fqdq https://github.com/rubysec/ruby-advisory-db/blob/master/gems/gitlab-grit/CVE-2013-4489.yml 38.3.0
2026-04-02T21:56:07.278307+00:00 GitLab Importer Affected by VCID-8p24-6g5t-fqdq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/gitlab-grit/CVE-2013-4489.yml 38.1.0
2026-04-02T19:30:39.286050+00:00 Ruby Importer Affected by VCID-8p24-6g5t-fqdq https://github.com/rubysec/ruby-advisory-db/blob/master/gems/gitlab-grit/CVE-2013-4489.yml 38.1.0
2026-04-01T16:13:17.291036+00:00 GitLab Importer Affected by VCID-8p24-6g5t-fqdq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/gitlab-grit/CVE-2013-4489.yml 38.0.0
2026-04-01T15:47:26.176350+00:00 Ruby Importer Affected by VCID-8p24-6g5t-fqdq https://github.com/rubysec/ruby-advisory-db/blob/master/gems/gitlab-grit/CVE-2013-4489.yml 38.0.0