4 matches found
CVE-2025-26841
Cross Site Scripting vulnerability in WPEVEREST Everest Forms before 3.0.9 allows an attacker to execute arbitrary code via a file upload...
CVE-2025-26841
Cross Site Scripting vulnerability in WPEVEREST Everest Forms before 3.0.9 allows an attacker to execute arbitrary code via a file upload...
CVE-2025-26841
CVE-2025-26841 affects WPEVEREST Everest Forms (WordPress plugin) prior to version 3.0.9. The vulnerability is a Cross Site Scripting flaw in the file upload feature that an attacker can abuse to execute arbitrary code. Root cause is an improper handling/validation in file uploads enabling XSS; C...
CVE-2025-26841
Cross Site Scripting vulnerability in WPEVEREST Everest Forms before 3.0.9 allows an attacker to execute arbitrary code via a file upload...