A critical security vulnerability has been discovered in Vim, the popular open-source command line text editor used by millions of developers worldwide.
The vulnerability, designated as CVE-2025-53906, affects the zip.vim plugin and enables attackers to overwrite arbitrary files through specially crafted zip archives
https://cybersecuritynews.com/vim-text- ... erability/