Everest Forms
wpeverest
Developer
3.4.1
Latest version
100,000
Installations
Oct 16, 2025
Last updated
Vulnerability history
0 present
12 fixed
5 Mitigation rules
- Admin+ Stored XSS vulnerability< 3.0.3.1May 19, 2025
- Reflected Cross-Site Scripting vulnerability<= 3.1.1Apr 11, 2025
- Authenticated (Subscriber+) Arbitrary Shortcode Execution vulnerability<= 3.1.1Apr 11, 2025
- Unauthenticated PHP Object Injection vulnerability<= 3.1.1Apr 11, 2025
- Unauthenticated Arbitrary File Upload, Read, and Deletion vulnerability<= 3.0.9.4Feb 24, 2025
- Admin+ Stored XSS vulnerability< 3.0.8.1Feb 13, 2025
- Admin+ Stored XSS vulnerability< 3.0.4.2Nov 26, 2024
- Unauthenticated Server-Side Request Forgery via font_url vulnerability<= 2.0.7Mar 18, 2024
- Cross Site Scripting (XSS) vulnerability<= 2.0.4.1Dec 27, 2023
- Broken Access Control vulnerability<= 2.0.3Dec 26, 2023
- Reflected Cross-Site Scripting (XSS) vulnerability<= 1.7.9Nov 22, 2021
- SQL Injection (SQLi) vulnerability<= 1.4.9Jul 19, 2019