2026-03-24 19:43:07
GitHub_M
PUBLISHED
Vim is an open source, command line text editor. Prior to version 9.2.0202, a command injection vulnerability exists in Vims glob() function on Unix-like systems. By including a newline character (n) in a pattern passed to glob(), an attacker may be able to execute arbitrary shell commands. This vulnerability depends on the users shell setting. This issue has been patched in version 9.2.0202.