CVE-2008-4677
CVE-2008-4677 affects the Netrw plugin (autoload/netrw.vim) in Vim 7.1.x and 7.2-era configurations, where credentials stored for an FTP session could be disclosed to remote servers. The issue stems from the netrw plugin sending stored usernames/passwords during subsequent FTP attempts to differe...