Vulnerabilities > NIM Lang > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-01-30 CVE-2020-15690 Injection vulnerability in Nim-Lang NIM
In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether a message contains a newline character.
network
low complexity
nim-lang CWE-74
critical
 9.8
9.8
2020-08-14 CVE-2020-15692 Argument Injection or Modification vulnerability in Nim-Lang NIM
In Nim 1.2.4, the standard library browsers mishandles the URL argument to browsers.openDefaultBrowser.
network
low complexity
nim-lang CWE-88
critical
 9.8
9.8