A vulnerability has been found in WPEverest Everest Forms Pro Plugin up to 1.9.10 on WordPress and classified as problematic . Impacted is an unknown function. This manipulation causes cross site scripting. This vulnerability is tracked as CVE-2026-27070 . The attack is possible to be carried out remotely. No exploit exists.