HTTP Header Injection in Everything by Voidtools
CVE-2021-20784

6.1MEDIUM

Key Information:

Vendor: Voidtools
Status: Everything
Vendor: CVE Published:; 14 July 2021

What is CVE-2021-20784?

An HTTP header injection vulnerability exists in Everything versions 1.0, 1.1, and 1.2 (excluding the Lite version). This flaw enables a remote attacker to manipulate HTTP headers, potentially allowing them to inject arbitrary scripts or modify the way the website displays content. This could lead to a range of malicious activities impacting website security and user data integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Everything all versions of 1.0 (Everything 1.0 series) except the Lite version

Everything all versions of 1.1 (Everything 1.1 series) except the Lite version

Everything all versions of 1.2 (Everything 1.2 series) except the Lite version

References

https://www.voidtools.com/downloads/

https://www.voidtools.com/

https://jvn.jp/en/jp/JVN68971465/

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jul 14, 2021
Vulnerability Reserved
Dec 17, 2020

JSON

Voidtools