cleantalk
Vulnerabilities and Security Researches

Multi-Step Checkout for WooCommerce, CVE-2025-67542

CVE, Research URL

CVE-2025-67542

Home page URL

Security reports for Multi-Step Checkout for WooCommerce

Application

Multi-Step Checkout for WooCommerce

Published on
Dec 09, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SilkyPress Multi-Step Checkout for WooCommerce wp-multi-step-checkout allows DOM-Based XSS.This issue affects Multi-Step Checkout for WooCommerce: from n/a through <= 2.33.
Affected versions
max 2.33.
Status
vulnerable
Previous vulnerability researches
Advanced Flamingo (CVE-2023-52226) , Jun 07, 2024
Flamingo , Apr 16, 2025
Flamingo (022a9997dfc335fe7d818f90b085eb691dd3ba3c) , Jun 07, 2024
New vulnerability
Easy Theme Options (CVE-2025-14367) , Jan 10, 2026
Flowbox (CVE-2025-49338) , Jan 10, 2026
Series (CVE-2025-62759) , Jan 10, 2026
WP Cookie Consent ( for GDPR, CCPA &amp; ePrivacy ) (CVE-2025-66080) , Jan 10, 2026
WP Cookie Consent ( for GDPR, CCPA &amp; ePrivacy ) (CVE-2025-14061) , Jan 10, 2026