Everest forms
This hub aggregates every CVE we track for Everest forms, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.
6
CVEs tracked
1
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM4HIGH1CRITICAL1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
1
0
2024-082026-07
Latest CVEs
The 6 most recently published vulnerabilities affecting Everest forms.
- CVE-2026-57312WordPress Everest Forms plugin <= 3.4.8 - Reflected Cross Site Scripting (XSS) vulnerability7.1
- CVE-2026-22422WordPress Everest Forms plugin <= 3.4.1 - Arbitrary Shortcode Execution vulnerability5.3
- CVE-2023-51377WordPress Everest Forms plugin <= 2.0.3 - Broken Access Control vulnerability5.3
- CVE-2023-51695WordPress Everest Forms Plugin <= 2.0.4.1 is vulnerable to Cross Site Scripting (XSS)5.9
- CVE-2021-24907Everest Forms < 1.8.0 - Reflected Cross-Site Scripting6.1
- CVE-2019-13575A SQL injection vulnerability exists in WPEverest Everest Forms plugin for WordPress through 1.4.9. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary ...9.8
Product normalization is registry-driven with AI assist and human review. How it works