Missing Authorization Vulnerability Affects Multi Step Form
CVE-2024-50428
9.8CRITICAL
What is CVE-2024-50428?
A missing authorization vulnerability in the Multi Step Form plugin developed by Mondula GmbH allows unauthorized access due to incorrectly configured access control security levels. This flaw can potentially expose sensitive information or allow unauthorized actions within the impacted versions, notably up to 1.7.21.
Affected Version(s)
Multi Step Form <= 1.7.21