Mondula2016 Multi Step Form
3 CVEs affecting Mondula2016 Multi Step Form. Latest disclosed: 2025-09-06. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-9515 | High | 7.2 | 2025-09-06 | The Multi Step Form plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the import functionality in all versio… |
CVE-2024-12427 | Medium | 5.3 | 2025-01-16 | The Multi Step Form plugin for WordPress is vulnerable to unauthorized limited file upload due to a missing capability check on the fw_upload_file AJAX action… |
CVE-2024-50428 | Medium | 4.3 | 2024-10-29 | Missing Authorization vulnerability in mondula2016 Multi Step Form multi-step-form allows Exploiting Incorrectly Configured Access Control Security Levels.This… |