CVE-2026-3300: Critical RCE in Everest Forms Pro for WordPress10. June 2026CybersecurityAn unpatched security vulnerability in Everest Forms Pro (up to version 1.9.12) allows unauthenticated attackers to execute arbitrary PHP code on WordPress websites and take control. Share on: