id	summary	reporter	owner	description	type	status	priority	milestone	component	version	severity	resolution	keywords	cc
5877	vim-9.2.0078 (Security update)	Bruce Dubbs	zeckma	"# Summary

An OS command injection vulnerability exists in the `netrw` standard plugin bundled with Vim. By inducing a user to open a crafted URL (e.g., using the`scp://` protocol handler), an attacker can execute arbitrary shell commands with the privileges
of the Vim process."	enhancement	closed	high	13.1	Book	git	normal	fixed