Fedora 42 : vim (2026-1885157e34)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-1885157e34 advisory. patchlevel 148 ---- Security fixes for CVE-2026-28417, CVE-2026-28418, CVE-2026-28419, CVE-2026-28420, CVE-2026-28421, CVE-2026-28422 ---- Security...

Fedora: Security Advisory (FEDORA-2026-1885157e34)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-28418 affecting package vim for versions less than 9.2.0088-1

CVE-2026-28418 affecting package vim for versions less than 9.2.0088-1. An upgraded version of the package is available that resolves this issue...

Fedora: Security Advisory (FEDORA-2026-651ba4626f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2026-0049)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2026-28418

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-style tags fil...

CVE-2026-28418

creationtimestamp| type| source ---|---|--- 2026-03-03 15:35:06+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mg63tdu3sd26 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/...

BELL-CVE-2026-28418

Bulletin has no description...

CVE-2026-28418

A flaw was found in Vim. When processing a specially crafted Emacs-style tags file, a heap-based buffer overflow out-of-bounds read vulnerability allows an attacker to trick Vim into reading up to 7 bytes beyond its allocated memory boundary. This could lead to information disclosure or potential...

AZL-78506 CVE-2026-28418 affecting package vim 9.1.1616-1

Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-style tags file parsing logic. When processing a malformed tags file, Vim can be tricked into reading up to 7 bytes beyond the allocated memory boundar...

CVE-2024-28418

RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...

CVE-2024-28418

creationtimestamp| type| source ---|---|--- 2024-03-14 14:26:32+00:00| seen| https://t.me/ctinow/207757 2024-03-14 14:31:39+00:00| seen| https://t.me/ctinow/207765...

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

CVE-2023-28418

Auth. subscriber+ Reflected Cross-Site Scripting XSS vulnerability in Yudlee themes Mediciti Lite theme = 1.3.0 versions...

CVE-2023-28418

CVE-2023-28418 is a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress theme Mediciti Lite by Yudlee, affecting versions

CVE-2023-28418 WordPress Mediciti Lite Theme <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Auth. subscriber+ Reflected Cross-Site Scripting XSS vulnerability in Yudlee themes Mediciti Lite theme = 1.3.0 versions...

WordPress Mediciti Lite Theme <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Mediciti Lite Type Theme Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-28418 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 6c5814599dc5 Credits Dave Jong Patchstack...

CVE-2020-28418

HP advisory HPSBGN03722 rev.1 details a vulnerability in HP Support Assistant involving a weak ACL and DLL loading that could permit an attacker to execute arbitrary code. The advisory cites a patch released on March 10, 2021 that updates HP Support Assistant clients on the weekly update scan for...