[VIM] Open source, open to attack
security curmudgeon
jericho at attrition.org
Wed Jul 23 14:44:44 UTC 2008
http://www.gcn.com/online/vol1_no1/46693-1.html
[..]
The study found a total of 44,233 vulnerabilities in the 4.25 million lines of
code examined. Hipergate 3.0.26 topped the list with 14,425 vulnerabilities in
about 81,000 lines of code. The two most common vulnerabilities overall were
cross-site scripting, with 22,828, and SQL injection, with 15,612.
[..]
--
Seems someone could pull out many of these vulns if XSS. I'd both love and hate
to see a post to Bugtraq with "1,483 XSS in <package>".
More information about the VIM
mailing list