ruby code injection

CVE-2026-47167 is a medium-severity Vim code-injection vulnerability disclosed in June 2026 that affects Vim versions before 9.2.0496 when the bundled Cucumber filetype plugin runs on builds compiled with Ruby support and processes malicious step-definition patterns from an attacker-controlled...