Summary
Threat actors are exploiting a critical RCE vulnerability in Everest Forms Pro (CVE-2026-3300) to take over WordPress sites and separate campaigns use Stripe and Google Tag Manager to exfiltrate stolen credit card data.
Take Action:
If you use the Everest Forms Pro WordPress plugin, update it to version 1.9.13 or later ASAP, since attackers are actively exploiting a critical flaw to take over sites. After updating, check your WordPress user list for any unknown accounts and review your server logs for suspicious activity (such as connections from IPs 202.56.2.126 or 209.146.60.26).
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)