FYI, we are already using 1.7.6 – Presume it’s still blocking due to a legacy issue in 1.2.5 on any hosts using Imunify360?
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14430
Hi there,
No modifications to the plugin – This is simply what my web host’s support team came back with.
Kind regards,
Liam
Hi there,
Just to follow up on this, and in case it’s useful for anyone else – The script was being blocked by mod_security/Imunify360 by the web hosting provider. Please see below:
“IM360 WAF: XSS vulnerability in Multi Step Form plugin through 1.2.5 for WordPress (CVE-2018-14430)”
Hope that helps.
Kind regards,
Liam
Hi there,
Thank you for your reply. SMTP is configured correctly, and the test mail is received. However, the form is still returning a “submit failed” message.
Would it please be possible to assist?
Many thanks
