CVE-2025-8871 | Everest Forms Pro Plugin up to 1.9.7 on WordPress mime_content_type deserialization

November 4, 2025 Yanac

A vulnerability classified as critical was found in Everest Forms Pro Plugin up to 1.9.7 on WordPress. This issue affects the function mime_content_type. The manipulation results in deserialization.

This vulnerability is known as CVE-2025-8871. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-12582 | Features Plugin up to 0.0.2 on WordPress features_revert_option authorization
CVE-2025-63294 | Codecanyon/WorkDo HRM SaaS HR and Payroll Tool 8.1 permission