Vulnerability Details CVE-2021-20784
HTTP header injection vulnerability in Everything version 1.0, 1.1, and 1.2 except the Lite version may allow a remote attacker to inject an arbitrary script or alter the website that uses the product.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 62.7%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 5.8
References
Products affected by CVE-2021-20784
-
cpe:2.3:a:voidtools:everything:*
-
cpe:2.3:a:voidtools:everything:1.1.4.301
-
cpe:2.3:a:voidtools:everything:1.2.0.317
-
cpe:2.3:a:voidtools:everything:1.2.0.318
-
cpe:2.3:a:voidtools:everything:1.2.0.321
-
cpe:2.3:a:voidtools:everything:1.2.0.322
-
cpe:2.3:a:voidtools:everything:1.2.0.323
-
cpe:2.3:a:voidtools:everything:1.2.1.352
-
cpe:2.3:a:voidtools:everything:1.2.1.355
-
cpe:2.3:a:voidtools:everything:1.2.1.356
-
cpe:2.3:a:voidtools:everything:1.2.1.358
-
cpe:2.3:a:voidtools:everything:1.2.1.360
-
cpe:2.3:a:voidtools:everything:1.2.1.369
-
cpe:2.3:a:voidtools:everything:1.2.1.371
-
cpe:2.3:a:voidtools:everything:1.2.1.451a