Does TSF Multistep Checkout for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in TSF Multistep Checkout for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is TSF Multistep Checkout for WooCommerce compatible with WordPress 4.7.32?

According to WordPress.org data, TSF Multistep Checkout for WooCommerce 1.0 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is TSF Multistep Checkout for WooCommerce updated?

TSF Multistep Checkout for WooCommerce was last updated on Unknown. Frequent updates are generally a positive security signal.

What is TSF Multistep Checkout for WooCommerce's security score?

TSF Multistep Checkout for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

TSF Multistep Checkout for WooCommerce Security & Risk Analysis

wordpress.org/plugins/tsf-multistep-checkout-for-woocommerce

All buyers interested simple multistep checkout process , so you can increase your sales with help multistep checkout for woocommerce.

10 active installs v1.0 PHP + WP 3.5+ Updated Unknown

woocommerce-checkoutwoocommerce-checkout-stepswoocommerce-checkout-wizardwoocommerce-multistep-checkoutwoocommerce-multistep-checkout-wizard

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is TSF Multistep Checkout for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

TSF Multistep Checkout for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "tsf-multistep-checkout-for-woocommerce" plugin v1.0 exhibits a mixed security posture. On the positive side, it demonstrates strong practices regarding SQL queries, exclusively using prepared statements, and has no recorded vulnerabilities or known CVEs. This suggests a potentially stable and well-maintained codebase concerning common attack vectors like SQL injection.

However, significant concerns arise from the static analysis of its attack surface. The plugin exposes a notable number of AJAX handlers, with a substantial proportion (4 out of 6) lacking any authentication checks. This creates a significant opening for unauthorized actions if these handlers perform sensitive operations. Furthermore, the taint analysis, though limited in scope, identified flows with unsanitized paths, indicating a potential for unintended data processing, although no critical or high severity issues were found.

The lack of any recorded vulnerability history is a positive indicator of past security diligence. Nonetheless, the identified unprotected AJAX endpoints and unsanitized taint flows present immediate risks that require attention. The plugin's strengths lie in its secure database interactions, but its weaknesses are in the handling of its input endpoints, particularly AJAX requests.

Key Concerns

Unprotected AJAX handlers
Flows with unsanitized paths
Low output escaping rate
Limited nonce checks

Vulnerabilities

None known

TSF Multistep Checkout for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

TSF Multistep Checkout for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

21% escaped53 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths

tsf_multistep_checkout_validate_post_code (includes\tsf-shortcode.php:287)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

TSF Multistep Checkout for WooCommerce Attack Surface

Entry Points6

Unprotected4

AJAX Handlers 6

authwp_ajax_valid_post_codeincludes\tsf-shortcode.php:283

noprivwp_ajax_valid_post_codeincludes\tsf-shortcode.php:284

authwp_ajax_validate_phoneincludes\tsf-shortcode.php:296

noprivwp_ajax_validate_phoneincludes\tsf-shortcode.php:297

authwp_ajax_wmc_check_user_loginincludes\tsf-shortcode.php:309

noprivwp_ajax_wmc_check_user_loginincludes\tsf-shortcode.php:310

WordPress Hooks 14

filterplugin_row_metaincludes\tsf-admin.php:5

filteradmin_footer_textincludes\tsf-admin.php:25

actionadmin_enqueue_scriptsincludes\tsf-admin.php:36

actionadmin_menuincludes\tsf-admin.php:48

actionwp_headincludes\tsf-shortcode.php:83

actionwp_enqueue_scriptsincludes\tsf-shortcode.php:110

actionwp_enqueue_scriptsincludes\tsf-shortcode.php:171

actionwoocommerce_checkout_order_reviewincludes\tsf-shortcode.php:179

actionafter_setup_themeincludes\tsf-shortcode.php:196

actionafter_setup_themeincludes\tsf-shortcode.php:212

actionwoocommerce_before_checkout_formincludes\tsf-shortcode.php:217

actionwoocommerce_multistep_checkout_beforeincludes\tsf-shortcode.php:222

actionwoocommerce_multistep_checkout_beforeincludes\tsf-shortcode.php:256

filterwoocommerce_locate_templatemultistep-checkout-for-woo.php:53

Maintenance & Trust

TSF Multistep Checkout for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedUnknown

PHP min version

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

TSF Multistep Checkout for WooCommerce Alternatives

MultiStep Checkout

multistep-checkout

A MultiStep Checkout plugin for WooCommerce.

10 No CVEs

MultiStep Checkout for WooCommerce

woo-multistep-checkout

100

MultiStep Checkout for WooCommerce Split up your WooCommerce Checkout form easily into simpler steps.

4K No CVEs

Checkout Field Editor (Checkout Manager) for WooCommerce

woo-checkout-field-editor-pro

Checkout Field Editor (Checkout Manager) for WooCommerce – The best WooCommerce checkout manager plugin to manage WooCommerce checkout fields.

500K 3 CVEs

Checkout Field Manager (Checkout Manager) for WooCommerce

woocommerce-checkout-manager

Checkout Field Manager (Checkout Manager) for WooCommerce is the most advanced plugin to customize checkout fields on your WooCommerce checkout page.

90K 5 CVEs

Flexible Checkout Fields for WooCommerce – WooCommerce Checkout Manager

flexible-checkout-fields

The best WooCommerce checkout manager. Edit, remove or add checkout fields. Customize WooCommerce checkout with this checkout field customizer.

80K 2 CVEs

Developer Profile

TSF Multistep Checkout for WooCommerce Developer Profile

rufataskerov

2 plugins · 20 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect TSF Multistep Checkout for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tsf-multistep-checkout-for-woocommerce/assets/css/tsf-admin.css/wp-content/plugins/tsf-multistep-checkout-for-woocommerce/assets/js/tsf-admin.js/wp-content/plugins/tsf-multistep-checkout-for-woocommerce/assets/js/script.js

Script Paths

/wp-content/plugins/tsf-multistep-checkout-for-woocommerce/assets/js/tsf-admin.js/wp-content/plugins/tsf-multistep-checkout-for-woocommerce/assets/js/script.js

HTML / DOM Fingerprints

CSS Classes

tsf-tabstsf-tab-contenttsf_multistep_checkout_stylepremium-img

Data Attributes

data-target

FAQ