Lucene search
K

4 matches found

Microsoft CVE
Microsoft CVE
added 2026/06/13 8:1 a.m.13 views

Vim: Vimscript Code Injection in cucumber filetype plugin via crafted step-definition regex

...

5.3CVSS5.3AI score0.00135EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/11 6:31 p.m.34 views

CVE-2026-47167 Vim: Vimscript Code Injection in cucumber filetype plugin via crafted step-definition regex

Vim is an open source, command line text editor. Prior to version 9.2.0496, a code injection vulnerability exists in s:stepmatch in the cucumber filetype plugin runtime/ftplugin/cucumber.vim on Vim builds with +ruby support. Step-definition patterns read from .rb files under the repository's...

5.1CVSS0.00135EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/11 6:31 p.m.8 views

CVE-2026-47167 Vim: Vimscript Code Injection in cucumber filetype plugin via crafted step-definition regex

Vim is an open source, command line text editor. Prior to version 9.2.0496, a code injection vulnerability exists in s:stepmatch in the cucumber filetype plugin runtime/ftplugin/cucumber.vim on Vim builds with +ruby support. Step-definition patterns read from .rb files under the repository's...

5.1CVSS5.9AI score0.00135EPSS
Exploits0References3
CVE
CVE
added 2026/06/11 6:31 p.m.86 views

CVE-2026-47167

Vim has a code injection vulnerability in the cucumber filetype plugin (runtime/ftplugin/cucumber.vim) affecting builds with +ruby support prior to version 9.2.0496. A crafted step-definition regex pulled from .rb files under features// or stories/ / directories is embedded into a Ruby Kernel.eva...

5.3CVSS5.9AI score0.00135EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder