This page lists publicly disclosed CVE vulnerabilities affecting voidtools everything (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-27704 | Void Tools Everything lower than v1.4.1.1022 was discovered to contain a Regular Expression Denial of Service (ReDoS). | [email protected] | 5.5 | 0.14% | 2023-04-12 | 2025-02-10 |
| CVE-2021-20784 | HTTP header injection vulnerability in Everything version 1.0, 1.1, and 1.2 except the Lite version may allow a remote attacker to inject an arbitrary script or alter the website that uses the product. | [email protected] | 6.1 | 0.83% | 2021-07-14 | 2024-12-03 |
| CVE-2020-24567 | voidtools Everything before 1.4.1 Beta Nightly 2020-08-18 allows privilege escalation via a Trojan horse urlmon.dll file in the installation directory. NOTE: this is only relevant if low-privileged users can write to the installation directory, which may be considered a site-specific configuration error | [email protected] | 7.8 | 0.13% | 2020-08-21 | 2024-11-21 |