Vulnerabilities > NIM Lang > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-13 | CVE-2021-46872 | Cross-site Scripting vulnerability in Nim-Lang NIM and Nimforum An issue was discovered in Nim before 1.6.2. | 6.1 |
| 2021-08-10 | CVE-2020-23171 | Externally Controlled Reference to a Resource in Another Sphere vulnerability in Nim-Lang A vulnerability in all versions of Nim-lang allows unauthenticated attackers to write files to arbitrary directories via a crafted zip file with dot-slash characters included in the name of the crafted file. | 5.5 |
| 2021-03-26 | CVE-2021-21373 | Improper Certificate Validation vulnerability in Nim-Lang NIM Nimble is a package manager for the Nim programming language. | 5.9 |
| 2020-08-14 | CVE-2020-15693 | Injection vulnerability in Nim-Lang NIM In Nim 1.2.4, the standard library httpClient is vulnerable to a CR-LF injection in the target URL. | 6.5 |