Multi Step Form

Vulnerabilities 9Slug multi-step-formLatest version 1.7.27WordPress.org →

Minimum safe version

1.7.26

Update to 1.7.26 or later to address 9 fixable vulnerabilities

Latest available1.7.27 ✓

High 7.2

2025-09-06< 1.7.26

Multi Step Form <= 1.7.25 - Authenticated (Admin+) Arbitrary File Upload

Medium 5.3

2025-01-16< 1.7.24

CVE-2024-12427

Medium 4.3

2024-10-29< 1.7.22

CVE-2024-50428

Medium 5.4

2024-02-21< 1.7.19

CVE-2024-25905

Medium 5.9

2024-12-19< 1.7.17

WordPress Multi Step Form Plugin <= 1.7.13 is vulnerable to Cross Site Scripting (XSS)

Medium 5.4

2023-11-22< 1.7.13

CVE-2023-47758

Medium 4.8

2023-01-09< 1.7.8

CVE-2022-4196

Medium 6.1

2018-08-09< 1.2.6

WordPress Multi Step Form plugin <= 1.2.5 - Multiple Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerabilities

Medium 5.4

2018-12-20< 1.2.8

CVE-2018-14846