{"containers":{"cna":{"affected":[{"vendor":"voidtools","product":"Everything","versions":[{"version":"all versions of 1.0 (Everything 1.0 series) except the Lite version","status":"affected"}]},{"vendor":"voidtools","product":"Everything","versions":[{"version":"all versions of 1.1 (Everything 1.1 series) except the Lite version","status":"affected"}]},{"vendor":"voidtools","product":"Everything","versions":[{"version":"all versions of 1.2 (Everything 1.2 series) except the Lite version","status":"affected"}]}],"descriptions":[{"lang":"en","value":"HTTP header injection vulnerability in Everything version 1.0, 1.1, and 1.2 except the Lite version may allow a remote attacker to inject an arbitrary script or alter the website that uses the product."}],"problemTypes":[{"descriptions":[{"description":"Improper Neutralization of HTTP Headers for Scripting Syntax","lang":"en-US","cweId":"CWE-644","type":"CWE"}]}],"references":[{"url":"https://www.voidtools.com/downloads/"},{"url":"https://www.voidtools.com/"},{"url":"https://jvn.jp/en/jp/JVN68971465/"}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en-US","value":"GENERAL"}],"cvssV3_0":{"version":"3.0","baseSeverity":"MEDIUM","baseScore":6.1,"vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}}],"providerMetadata":{"orgId":"ede6fdc4-6654-4307-a26d-3331c018e2ce","shortName":"jpcert","dateUpdated":"2024-12-03T01:14:05.653Z"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T17:53:22.489Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://www.voidtools.com/downloads/"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://www.voidtools.com/"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://jvn.jp/en/jp/JVN68971465/index.html"}]}]},"cveMetadata":{"assignerOrgId":"ede6fdc4-6654-4307-a26d-3331c018e2ce","assignerShortName":"jpcert","cveId":"CVE-2021-20784","datePublished":"2021-07-14T01:20:29.000Z","dateReserved":"2020-12-17T00:00:00.000Z","dateUpdated":"2024-12-03T01:14:05.653Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}