The Read More Without Refresh plugin for WordPress is not secure in versions up to 3.1. It could allow someone who has administrator access to inject malicious code in web pages. This code will be executed when a user visits the page. This security risk only affects multi-site installations or installations where unfiltered_html has been disabled.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
