[VIM] Open source, open to attack

security curmudgeon jericho at attrition.org
Wed Jul 23 14:44:44 UTC 2008



The study found a total of 44,233 vulnerabilities in the 4.25 million lines of 
code examined. Hipergate 3.0.26 topped the list with 14,425 vulnerabilities in 
about 81,000 lines of code. The two most common vulnerabilities overall were 
cross-site scripting, with 22,828, and SQL injection, with 15,612.



Seems someone could pull out many of these vulns if XSS. I'd both love and hate 
to see a post to Bugtraq with "1,483 XSS in <package>".

More information about the VIM mailing list