{"uuid": "e1d87b3f-7abf-469d-adad-12d2e76d6d1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://thehackernews.com/2026/06/hackers-exploit-critical-everest-forms.html", "content": "Threat actors are actively exploiting a critical security flaw in Everest Forms Pro, a WordPress plugin with about 4,000 active installations, to execute arbitrary code, leading to a complete site compromise.\n\nThe vulnerability in question is CVE-2026-3300 (CVSS score: 9.8), a remote code execution bug impacting all versions of the plugin up to, and including, 1.9.12. A patch for the flaw was", "creation_timestamp": "2026-06-05T06:38:59.000000Z"}