Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in WordPress Infinite Scroll – Ajax Load More 2.8.1.1

  • Severity: high-risk
  • Status: Fixed
  • Publication: October 10, 2015

The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to malicious files being uploaded to the affected site’s server. This vulnerability affects versions up to, and including, 2.8.1.2. An attacker with access to the affected site’s server can exploit this vulnerability to upload malicious files, which could potentially lead to remote code execution.

Detected in:

Ajax Load More – Infinite Scroll fixed vulnerable versions:
Ajax Load More – Infinite Scroll, Lazy Load & Load More fixed vulnerable versions:
Ajax Load More – Infinite Scroll, Load More, & Lazy Load fixed vulnerable versions:
WordPress Infinite Scroll – Ajax Load More fixed vulnerable versions: >= * <= 2.8.1.1

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.