Everest Forms
wpeverest
Developer
3.4.4
Latest version
100,000
Installations
No date
Last updated
Vulnerability history
0 present
13 patched
5 Mitigation rules
- Arbitrary Shortcode Execution vulnerability<= 3.4.126/09/2025
- Admin+ Stored XSS vulnerability< 3.0.3.119/05/2025
- Reflected Cross-Site Scripting vulnerability<= 3.1.111/04/2025
- Authenticated (Subscriber+) Arbitrary Shortcode Execution vulnerability<= 3.1.111/04/2025
- Unauthenticated PHP Object Injection vulnerability<= 3.1.111/04/2025
- Unauthenticated Arbitrary File Upload, Read, and Deletion vulnerability<= 3.0.9.424/02/2025
- Admin+ Stored XSS vulnerability< 3.0.8.113/02/2025
- Admin+ Stored XSS vulnerability< 3.0.4.226/11/2024
- Unauthenticated Server-Side Request Forgery via font_url vulnerability<= 2.0.718/03/2024
- Cross Site Scripting (XSS) vulnerability<= 2.0.4.127/12/2023
- Broken Access Control vulnerability<= 2.0.326/12/2023
- Reflected Cross-Site Scripting (XSS) vulnerability<= 1.7.922/11/2021
- SQL Injection (SQLi) vulnerability<= 1.4.919/07/2019