CYBERHAWK / CVE / CVE-2026-3296

CVE-2026-3296

Everest Forms WordPress plugin

CRITICAL CVSS 9.8 oss

The flaw

PHP object injection via form metadata deserialization

Update beyond version 3.4.3

NVD CISA KEV OSV GitHub Advisory MITRE News search

First seen 2026-04-15 · Tracked by PickBits CyberHawk · Weekly CVE digest

← All CVEs RSS Scheduled audits