Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

Everest Forms Pro — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in Everest Forms Pro, with AI-generated Chinese analysis, references, and POCs.

Vendor: WPEverest

CVE IDTitleCVSSSeverityPaused
CVE-2026-3300 Everest Forms Pro <= 1.9.12 - Unauthenticated Remote Code Execution via Calculation Field CWE-94 9.8 Critical2026-03-31
CVE-2026-27070 WordPress Everest Forms Pro plugin <= 1.9.12 - Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2026-03-19
CVE-2025-8871 Everest Forms (Pro) <= 1.9.7 - Unauthenticated PHP Object Injection via PHAR Deserialization in Form Signature CWE-502 5.6 Medium2025-11-05
CVE-2025-5927 Everest Forms (Pro) <= 1.9.4 - Unauthenticated Path Traversal to Arbitrary File Deletion CWE-36 7.5 High2025-06-25

All 4 known CVE vulnerabilities affecting Everest Forms Pro with full Chinese analysis, references, and POCs where available.