https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-06-08T01:36:19.582487+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/531178bc-4ade-47b1-b044-cbe0461f23cc/export531178bc-4ade-47b1-b044-cbe0461f23cc2026-06-08T01:36:19.588776+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "531178bc-4ade-47b1-b044-cbe0461f23cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/bleepingcomputer.com/post/3mnmtjajdce22", "content": "Hackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin, which lets them take complete control of a WordPress website.", "creation_timestamp": "2026-06-06T14:12:44.617638Z"}2026-06-06T14:12:44.617638+00:00https://vulnerability.circl.lu/sighting/9e75d16d-727d-4e0f-b507-781a99a1298f/export9e75d16d-727d-4e0f-b507-781a99a1298f2026-06-08T01:36:19.588701+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "9e75d16d-727d-4e0f-b507-781a99a1298f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mnmuafszlf2c", "content": "Everest Forms Pro\u306e\u91cd\u5927\u306a\u8106\u5f31\u6027\u304c\u60aa\u7528\u3055\u308c\u3001WordPress\u30b5\u30a4\u30c8\u304c\u4e57\u3063\u53d6\u3089\u308c\u308b\u88ab\u5bb3\n\n\u30cf\u30c3\u30ab\u30fc\u304cEverest Forms Pro\u30d7\u30e9\u30b0\u30a4\u30f3\u306e\u91cd\u5927\u306a\u8106\u5f31\u6027\uff08CVE-2026-3300\uff09\u3092\u7a4d\u6975\u7684\u306b\u60aa\u7528\u3057\u3066\u304a\u308a\u3001WordPress\u30a6\u30a7\u30d6\u30b5\u30a4\u30c8\u3092\u5b8c\u5168\u306b\u5236\u5fa1\u3067\u304d\u308b\u72b6\u614b\u306b\u7f6e\u304b\u308c\u3066\u3044\u307e\u3059\u3002 \u3053\u306e\u8106\u5f31\u6027\u306f\u30d7\u30e9\u30b0\u30a4\u30f3\u306e\u30d0\u30fc\u30b8\u30e7\u30f31.9.12\u4ee5\u524d\u306b\u5f71\u97ff\u3057\u3001\u8a8d\u8a3c\u306a\u3057\u306b\u30b5\u30fc\u30d0\u30fc\u4e0a\u3067\u4efb\u610f\u306e\u30b3\u30fc\u30c9\u3092\u5b9f\u884c\u3059\u308b\u305f\u3081\u306b\u5229\u7528\u3055\u308c\u308b\u53ef", "creation_timestamp": "2026-06-06T14:25:32.383634Z"}2026-06-06T14:25:32.383634+00:00https://vulnerability.circl.lu/sighting/0aef5f7f-5503-4cbc-b193-39261d43992e/export0aef5f7f-5503-4cbc-b193-39261d43992e2026-06-08T01:36:19.588613+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "0aef5f7f-5503-4cbc-b193-39261d43992e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mnmzpmw6lm24", "content": "Everest Forms Pro\u306b\u6df1\u523b\u306a\u8106\u5f31\u6027(CVE-2026-3300)\u304c\u3042\u308a\u3001\u653b\u6483\u8005\u306fWordPress\u30b5\u30a4\u30c8\u3092\u5b8c\u5168\u306b\u5236\u5fa1\u53ef\u80fd\u3002", "creation_timestamp": "2026-06-06T16:03:32.752323Z"}2026-06-06T16:03:32.752323+00:00https://vulnerability.circl.lu/sighting/02190b1c-5875-4501-918b-bbc792ebf7b8/export02190b1c-5875-4501-918b-bbc792ebf7b82026-06-08T01:36:19.588529+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "02190b1c-5875-4501-918b-bbc792ebf7b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mnn2m4ror42b", "content": "Critical 0-Day Alert: Unauthenticated RCE in Everest Forms Pro (CVE-2026-3300) Enables Full Site Takeover +\u00a0Video\n\nIntroduction: A critical Remote Code Execution (RCE) vulnerability, identified as CVE-2026-3300 with a CVSS score of 9.8 (Critical), is being actively exploited in the wild against the\u2026", "creation_timestamp": "2026-06-06T16:19:28.772387Z"}2026-06-06T16:19:28.772387+00:00https://vulnerability.circl.lu/sighting/0ba0fb02-71ab-471e-9f6e-8fa80c1b3e33/export0ba0fb02-71ab-471e-9f6e-8fa80c1b3e332026-06-08T01:36:19.588448+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "0ba0fb02-71ab-471e-9f6e-8fa80c1b3e33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/pixelsandpulse.bsky.social/post/3mnn3na5xen2o", "content": "Heads up, WordPress users! A severe RCE vulnerability (CVE-2026-3300) in Everest Forms Pro is being actively exploited. Attackers are creating rogue admin accounts. If you use this plugin, update to v1.9.13 immediately to\u2026\n\nhttps://www.tpp.blog/bkuolai\n\n#cybersecurity #everestformspro #wordpress", "creation_timestamp": "2026-06-06T16:37:59.140897Z"}2026-06-06T16:37:59.140897+00:00https://vulnerability.circl.lu/sighting/4dcf52f0-a055-48c7-82b4-9b4eded1c44b/export4dcf52f0-a055-48c7-82b4-9b4eded1c44b2026-06-08T01:36:19.588368+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "4dcf52f0-a055-48c7-82b4-9b4eded1c44b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/happeningnow.news/post/3mnnabbrxj32v", "content": "Critical Everest Forms Pro flaw exploited to take over WordPress sites\nHackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin, which lets them take complete control of a WordPress website. [...]\n\n\ud83d\udd17 https://hnow.live/a/48b0cd80", "creation_timestamp": "2026-06-06T18:00:46.899695Z"}2026-06-06T18:00:46.899695+00:00https://vulnerability.circl.lu/sighting/7cbcd308-cc8d-492e-bf32-4f63a50653e1/export7cbcd308-cc8d-492e-bf32-4f63a50653e12026-06-08T01:36:19.588292+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "7cbcd308-cc8d-492e-bf32-4f63a50653e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnncr37fkk2a", "content": "CVE-2026-3300 in Everest Forms Pro v1.9.12 and earlier is being exploited for unauthenticated code execution on WordPress, letting attackers create rogue admin accounts. #EverestFormsPro #WordPress #Wordfence", "creation_timestamp": "2026-06-06T18:45:24.688459Z"}2026-06-06T18:45:24.688459+00:00https://vulnerability.circl.lu/sighting/503c082d-2c21-42b8-9eb8-962463603ad0/export503c082d-2c21-42b8-9eb8-962463603ad02026-06-08T01:36:19.588211+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "503c082d-2c21-42b8-9eb8-962463603ad0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://threatintel.cc/2026/06/07/critical-everest-forms-pro-flaw.html", "content": "Critical Everest Forms Pro flaw exploited to take over WordPress sites\n\nHackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin to execute arbitrary code and seize administrative control of WordPress websites. Users should update to the patched version immediately and scan their systems for suspicious accounts like ‘diksimarina’.", "creation_timestamp": "2026-06-07T11:50:25.000000Z"}2026-06-07T11:50:25+00:00https://vulnerability.circl.lu/sighting/5e792e37-6f51-4273-8ca7-d48e2f74080e/export5e792e37-6f51-4273-8ca7-d48e2f74080e2026-06-08T01:36:19.588107+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "5e792e37-6f51-4273-8ca7-d48e2f74080e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/116709144623003901", "content": "Hackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin to execute arbitrary code and seize administrative control of WordPress websites. Users should update to the patched version immediately and scan their systems for suspicious accounts like 'diksimarina'.https://www.bleepingcomputer.com/news/security/critical-everest-forms-pro-flaw-exploited-to-take-over-wordpress-sites/", "creation_timestamp": "2026-06-07T13:50:19.919319Z"}2026-06-07T13:50:19.919319+00:00https://vulnerability.circl.lu/sighting/066f9e2b-7798-4b6d-9aea-3c21eee9511c/export066f9e2b-7798-4b6d-9aea-3c21eee9511c2026-06-08T01:36:19.586797+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "066f9e2b-7798-4b6d-9aea-3c21eee9511c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mnq72x5h5s2h", "content": "Critical Everest Forms Pro flaw exploited to take over WordPress sites\n\nHackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin, which lets them take complete control of a WordPress website. [...]\n#hackernews #news", "creation_timestamp": "2026-06-07T22:17:19.844192Z"}2026-06-07T22:17:19.844192+00:00