The Vimeo Video Autoplay Automute WordPress plugin through 1.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.

Universal Cross Site Scripting (UXSS) vulnerability in Vimium Extension 1.66 and earlier allows remote attackers to run arbitrary code via omnibar feature.

Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225.

A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim 8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1189.

Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145.

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144.

Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143.

Floating Point Comparison with Incorrect Operator in GitHub repository vim/vim prior to 9.0.0804.