Vulnerabilities and security researches forwp-multi-step-checkout wp-multi-step-checkout

Jan 09, 2026

CVE, Research URL: CVE-2025-67542
Home page URL: Security reports for Multi-Step Checkout for WooCommerce
Application: Multi-Step Checkout for WooCommerce
Date: Dec 09, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SilkyPress Multi-Step Checkout for WooCommerce wp-multi-step-checkout allows DOM-Based XSS.This issue affects Multi-Step Checkout for WooCommerce: from n/a through <= 2.33.
Affected versions: max 2.33.
Status: vulnerable