CVE-2026-35177 | vim up to 9.2.0279 zip.vim Plugin path traversal (GHSA-jc86-w7vm-8p24)

Inserito da Angelo Barbosa | Apr 6, 2026 | CVE

A vulnerability categorized as critical has been discovered in vim up to 9.2.0279. The affected element is an unknown function of the component zip.vim Plugin. Executing a manipulation can lead to path traversal.

This vulnerability is handled as CVE-2026-35177. The attack can be executed remotely. There is not any exploit available.

It is advisable to upgrade the affected component.

CVE-2026-35177 | vim up to 9.2.0279 zip.vim Plugin path traversal (GHSA-jc86-w7vm-8p24)

Post correlati

CVE-2024-7197 | SourceCodester Complaints Report Management System 1.0 manage_complaint.php id sql injection

CVE-2024-30589 | Tenda FH1202 1.2.0.14(408) /goform/addressNat fromAddressNat entrys stack-based overflow

CVE-2025-14632 | Filr Plugin up to 1.2.11 on WordPress HTML File FILR_Uploader HTML injection

CVE-2024-53054 | Linux Kernel up to 6.1.115/6.6.59/6.11.6 cgroup hung_task deadlock