CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Microsoft CVE•added yesterday•9 views

Vim: Vimscript Code Injection in netrw NetrwBookHistSave() via crafted directory name

...

8.8CVSS5.3AI score0.0004EPSS

Exploits0

Microsoft CVE•added yesterday•9 views

Vim: Vimscript Code Injection in cucumber filetype plugin via crafted step-definition regex

...

5.1CVSS5.3AI score0.00044EPSS

Exploits0

NVD•added 3 days ago•11 views

CVE-2026-47162

Vim is an open source, command line text editor. Prior to version 9.2.0495, a Vimscript code injection vulnerability exists in s:NetrwBookHistSave in the netrw plugin runtime/pack/dist/opt/netrw/autoload/netrw.vim when serializing browsed directory paths to the history file /.vim/.netrwhist. A...

8.8CVSS0.0004EPSS

Exploits0References3

Vulnrichment•added 3 days ago•4 views

CVE-2026-47162 Vim: Vimscript Code Injection in netrw NetrwBookHistSave() via crafted directory name

7.3CVSS5.8AI score0.0004EPSS

Exploits0References3

AlpineLinux•added 3 days ago•3 views

CVE-2026-47162

8.8CVSS5.8AI score0.0004EPSS

Exploits0References3

CVE•added 3 days ago•7 views

CVE-2026-47162

Vim (with the netrw plugin) is affected by CVE-2026-47162 due to a Vimscript code injection in s:NetrwBookHistSave() when serializing directory paths to the history file ~/.vim/.netrwhist. A directory name from the filesystem can be interpolated into a single-quoted Vimscript string literal witho...

8.8CVSS5.9AI score0.0004EPSS

Exploits0References3Affected Software1

Cvelist•added 3 days ago•25 views

CVE-2026-47162 Vim: Vimscript Code Injection in netrw NetrwBookHistSave() via crafted directory name

7.3CVSS0.0004EPSS

Exploits0References3

EUVD•added 3 days ago•5 views

EUVD-2026-36281

7.3CVSS5.9AI score0.0004EPSS

Exploits0References3

Positive Technologies•added 3 days ago•6 views

PT-2026-48705

7.3CVSS5.9AI score0.0004EPSS

Exploits0References4

OSV•added 2026/06/01 10:46 a.m.•3 views

SUSE-SU-2026:21944-1 Security update for vim

This update for vim fixes the following issues - CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim bsc1264706. - CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile via crafted filename bsc1265349. -...

7CVSS6AI score0.00224EPSS

Exploits1References12

OSV•added 2026/05/28 12:13 p.m.•5 views

SUSE-SU-2026:21840-1 Security update for vim

This update for vim fixes the following issues - CVE-2026-39881: command injection in NetBeans interface can lead to arbitrary file reads and writes bsc1261833. - CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim...

7.8CVSS7.5AI score0.00224EPSS

Exploits1References14

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by