Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPEverest Everest Forms Pro allows Stored XSS.This issue affects Everest Forms Pro: from n/a through 1.9.10.
References
Configurations
No configuration.
History
28 Apr 2026, 19:37
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
|
| Summary | (en) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPEverest Everest Forms Pro allows Stored XSS.This issue affects Everest Forms Pro: from n/a through 1.9.10. |
23 Apr 2026, 15:37
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
|
| Summary | (en) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPEverest Everest Forms Pro everest-forms-pro allows Stored XSS.This issue affects Everest Forms Pro: from n/a through <= 1.9.12. |
22 Apr 2026, 21:32
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
19 Mar 2026, 09:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-03-19 09:16
Updated : 2026-06-17 10:26
NVD link : CVE-2026-27070
Mitre link : CVE-2026-27070
CVE.ORG link : CVE-2026-27070
JSON object : View
Products Affected
No product.
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
