CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-46872

An issue was discovered in Nim before 1.6.2. The RST module of the Nim language stdlib, as used in NimForum and other products, permits the javascript: URI scheme and thus can lead to XSS in some applications. (Nim versions 1.6.2 and later are fixed; there may be backports of the fix to some earlier versions. NimForum 2.2.0 is fixed.)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.2%

CVSS Severity

CVSS v3 Score 6.1

References

Products affected by CVE-2021-46872

Nim-Lang » Nim » Version: 0.10.2

cpe:2.3:a:nim-lang:nim:0.10.2
Nim-Lang » Nim » Version: 0.11.0

cpe:2.3:a:nim-lang:nim:0.11.0
Nim-Lang » Nim » Version: 0.11.2

cpe:2.3:a:nim-lang:nim:0.11.2
Nim-Lang » Nim » Version: 0.12.0

cpe:2.3:a:nim-lang:nim:0.12.0
Nim-Lang » Nim » Version: 0.13.0

cpe:2.3:a:nim-lang:nim:0.13.0
Nim-Lang » Nim » Version: 0.14.0

cpe:2.3:a:nim-lang:nim:0.14.0
Nim-Lang » Nim » Version: 0.14.2

cpe:2.3:a:nim-lang:nim:0.14.2
Nim-Lang » Nim » Version: 0.15.0

cpe:2.3:a:nim-lang:nim:0.15.0
Nim-Lang » Nim » Version: 0.15.2

cpe:2.3:a:nim-lang:nim:0.15.2
Nim-Lang » Nim » Version: 0.16.0

cpe:2.3:a:nim-lang:nim:0.16.0
Nim-Lang » Nim » Version: 0.17.0

cpe:2.3:a:nim-lang:nim:0.17.0
Nim-Lang » Nim » Version: 0.17.2

cpe:2.3:a:nim-lang:nim:0.17.2
Nim-Lang » Nim » Version: 0.18.0

cpe:2.3:a:nim-lang:nim:0.18.0
Nim-Lang » Nim » Version: 0.19.0

cpe:2.3:a:nim-lang:nim:0.19.0
Nim-Lang » Nim » Version: 0.19.2

cpe:2.3:a:nim-lang:nim:0.19.2
Nim-Lang » Nim » Version: 0.19.4

cpe:2.3:a:nim-lang:nim:0.19.4
Nim-Lang » Nim » Version: 0.19.6

cpe:2.3:a:nim-lang:nim:0.19.6
Nim-Lang » Nim » Version: 0.20.0

cpe:2.3:a:nim-lang:nim:0.20.0
Nim-Lang » Nim » Version: 0.20.2

cpe:2.3:a:nim-lang:nim:0.20.2
Nim-Lang » Nim » Version: 0.8.14

cpe:2.3:a:nim-lang:nim:0.8.14
Nim-Lang » Nim » Version: 0.9.0

cpe:2.3:a:nim-lang:nim:0.9.0
Nim-Lang » Nim » Version: 0.9.2

cpe:2.3:a:nim-lang:nim:0.9.2
Nim-Lang » Nim » Version: 0.9.4

cpe:2.3:a:nim-lang:nim:0.9.4
Nim-Lang » Nim » Version: 0.9.6

cpe:2.3:a:nim-lang:nim:0.9.6
Nim-Lang » Nim » Version: 1.0.0

cpe:2.3:a:nim-lang:nim:1.0.0
Nim-Lang » Nim » Version: 1.0.10

cpe:2.3:a:nim-lang:nim:1.0.10
Nim-Lang » Nim » Version: 1.0.2

cpe:2.3:a:nim-lang:nim:1.0.2
Nim-Lang » Nim » Version: 1.0.4

cpe:2.3:a:nim-lang:nim:1.0.4
Nim-Lang » Nim » Version: 1.0.6

cpe:2.3:a:nim-lang:nim:1.0.6
Nim-Lang » Nim » Version: 1.0.8

cpe:2.3:a:nim-lang:nim:1.0.8
Nim-Lang » Nim » Version: 1.2

cpe:2.3:a:nim-lang:nim:1.2
Nim-Lang » Nim » Version: 1.2.0

cpe:2.3:a:nim-lang:nim:1.2.0
Nim-Lang » Nim » Version: 1.2.10

cpe:2.3:a:nim-lang:nim:1.2.10
Nim-Lang » Nim » Version: 1.2.12

cpe:2.3:a:nim-lang:nim:1.2.12
Nim-Lang » Nim » Version: 1.2.2

cpe:2.3:a:nim-lang:nim:1.2.2
Nim-Lang » Nim » Version: 1.2.4

cpe:2.3:a:nim-lang:nim:1.2.4
Nim-Lang » Nim » Version: 1.2.6

cpe:2.3:a:nim-lang:nim:1.2.6
Nim-Lang » Nim » Version: 1.2.8

cpe:2.3:a:nim-lang:nim:1.2.8
Nim-Lang » Nim » Version: 1.4.0

cpe:2.3:a:nim-lang:nim:1.4.0
Nim-Lang » Nim » Version: 1.4.2

cpe:2.3:a:nim-lang:nim:1.4.2
Nim-Lang » Nim » Version: 1.4.4

cpe:2.3:a:nim-lang:nim:1.4.4
Nim-Lang » Nim » Version: 1.4.6

cpe:2.3:a:nim-lang:nim:1.4.6
Nim-Lang » Nim » Version: 1.4.8

cpe:2.3:a:nim-lang:nim:1.4.8
Nim-Lang » Nim » Version: 1.6.0

cpe:2.3:a:nim-lang:nim:1.6.0
Nim-Lang » Nimforum » Version: N/A

cpe:2.3:a:nim-lang:nimforum:-
Nim-Lang » Nimforum » Version: 2.1.0

cpe:2.3:a:nim-lang:nimforum:2.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-46872

Products

Pricing

Contact Us