Known Vulnerabilities for Everest Forms by Wpeverest
Listed below are 5 of the newest known vulnerabilities associated with "Everest Forms" by "Wpeverest".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-27070 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPEverest Everest Forms... | Not Provided | 2026-03-19 | 2026-03-19 |
| CVE-2026-5478 json | The Everest Forms plugin for WordPress is vulnerable to Arbitrary File Read and Deletion in all versions up to, and including... | Not Provided | 2026-04-20 | 2026-04-21 |
| CVE-2026-3300 json | The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Execution via PHP Code Injection in all versions up t... | Not Provided | 2026-03-31 | 2026-03-31 |
| CVE-2026-3296 json | The Everest Forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.4.3 via ... | Not Provided | 2026-04-08 | 2026-04-08 |
| CVE-2025-3421 json | The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vul... | Not Provided | 2025-04-11 | 2026-04-08 |
| CVE-2024-1812 json | The Everest Forms plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.0... | Not Provided | 2024-04-09 | 2026-04-08 |
| CVE-2023-51695 json | 4.8 - MEDIUM | 2024-02-01 | 2024-02-06 | |
| CVE-2021-24907 json | The Contact Form, Drag and Drop Form Builder for WordPress plugin before 1.8.0 does not escape the status parameter before ou... | 6.1 - MEDIUM | 2021-12-21 | 2021-12-27 |
| CVE-2019-13575 json | A SQL injection vulnerability exists in WPEverest Everest Forms plugin for WordPress through 1.4.9. Successful exploitation o... | 9.8 - CRITICAL | 2019-07-18 | 2023-02-27 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Wpeverest | Everest Forms | 1.5.1 | |||
| Application | Wpeverest | Everest Forms | 1.5.0 | |||
| Application | Wpeverest | Everest Forms | 1.4.9 | |||
| Application | Wpeverest | Everest Forms | 1.4.8 | |||
| Application | Wpeverest | Everest Forms | 1.4.7 | |||
| Application | Wpeverest | Everest Forms | 1.4.6 | |||
| Application | Wpeverest | Everest Forms | 1.4.5 | |||
| Application | Wpeverest | Everest Forms | 1.4.4 | |||
| Application | Wpeverest | Everest Forms | 1.4.3 | |||
| Application | Wpeverest | Everest Forms | 1.4.2 | |||
| Application | Wpeverest | Everest Forms | 1.4.1 | |||
| Application | Wpeverest | Everest Forms | 1.4.0 | |||
| Application | Wpeverest | Everest Forms | 1.4.0 | |||
| Application | Wpeverest | Everest Forms | 1.4.0 | |||
| Application | Wpeverest | Everest Forms | 1.4.0 | |||
| Application | Wpeverest | Everest Forms | 1.4.0 | |||
| Application | Wpeverest | Everest Forms | 1.4.0 | |||
| Application | Wpeverest | Everest Forms | 1.4.0 | |||
| Application | Wpeverest | Everest Forms | 1.3.4 | |||
| Application | Wpeverest | Everest Forms | 1.3.3 |