oss-sec mailing list archives From : Christian Brabandt <cb () 256bit org> Date : Sun, 28 Jun 2026 18:08:41 +0200 Arbitrary Code Execution via PHP Omni-Completion in Vim < 9.2.0736 ================================================================== Date: 28.06.2026 Severity: Medium CVE: *requested, not yet assigned* CWE: Improper Neutralization of Special Elements (CWE-94), Inclusion of Functionality from Untrusted Control Sphere (CWE-829) ## Summary The PHP omni-completion script in `ru
