Known Vulnerabilities for Everest Forms Pro by WPEverest
Listed below are 6 of the newest known vulnerabilities associated with "Everest Forms Pro" by "WPEverest".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-27070 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPEverest Everest Forms... | Not Provided | 2026-03-19 | 2026-03-19 |
| CVE-2026-5478 json | The Everest Forms plugin for WordPress is vulnerable to Arbitrary File Read and Deletion in all versions up to, and including... | Not Provided | 2026-04-20 | 2026-04-21 |
| CVE-2026-3300 json | The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Execution via PHP Code Injection in all versions up t... | Not Provided | 2026-03-31 | 2026-03-31 |
| CVE-2026-3296 json | The Everest Forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.4.3 via ... | Not Provided | 2026-04-08 | 2026-04-08 |
| CVE-2025-3421 json | The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vul... | Not Provided | 2025-04-11 | 2026-04-08 |
| CVE-2024-1812 json | The Everest Forms plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.0... | Not Provided | 2024-04-09 | 2026-04-08 |