Medium 6.1
2026-05-01< 4.4.2
CVE-2024-13362
Contact Form 7 Multi-Step Forms
Minimum safe version
4.4.2
Update to 4.4.2 or later to address 9 fixable vulnerabilities
Latest available4.6 ✓
Medium 6.3
2024-10-16< 4.1.91
Freemius SDK <= 2.4.2 - Missing Authorization Checks
N/A
2023-07-18< 4.3.1
WordPress Contact Form 7 Multi-Step Forms Plugin < 4.3.1 is vulnerable to Cross Site Scripting (XSS)
N/A
2019-02-25< 3.0.9
Freemius SDK <= 2.2.3 - Missing Authorization to Arbitrary Options Update
N/A
2022-03-04< 4.1.91
Freemius SDK <= 2.4.2 - Missing Authorization Checks
N/A
< 3.0.9
Freemius Library < 2.2.4 - Subscriber+ Arbitrary Option Update
N/A
2019-03-05< 3.0.9
WordPress Contact Form 7 Multi-Step Forms plugin <= 3.0.8 - Authenticated Option Update vulnerability (Fremius Library security issue)
N/A
2022-02-28< 4.1.91
WordPress Contact Form 7 Multi-Step Forms plugin < 4.1.91 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
N/A
2022-02-28< 4.1.91
WordPress Contact Form 7 Multi-Step Forms plugin < 4.1.91 - Sensitive Information Disclosure vulnerability