Vulnerabilities and security researches forajax-load-more-anything ajax-load-more-anything

Jun 07, 2024

CVE, Research URL: CVE-2024-32110
Home page URL: Security reports for Load More Anything
Application: Load More Anything
Date: -
Research Description: Load More Anything [ajax-load-more-anything] < 3.3.6 (closed) CVE-2024-32110
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: 6b946ad178fdf132c2a039c6c7e104487b2ab9cb
Home page URL: Security reports for Load More Anything
Application: Load More Anything
Date: -
Research Description: Load More Anything [ajax-load-more-anything] < 3.3.4 WordPress Load More Anything Plugin <= 3.3.3 is vulnerable to Broken Access Control No patched version is available. Elliot discovered and reported this Broken Access Control vulnerability in WordPress Load More Anything Plugin. A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action. This vulnerability has not been known to be fixed yet. This vulnerability was reported to and published by Patchstack. Our users receive alerts and protections up to 48 hours in advance. Have additional information or questions about this entry? Get in touch.
Affected versions: Min -, max -.
Status: vulnerable

Jun 10, 2024

CVE, Research URL: CVE-2024-24704
Home page URL: Security reports for Load More Anything
Application: Load More Anything
Date: Jun 11, 2024
Research Description: Missing Authorization vulnerability in AddonMaster Load More Anything.This issue affects Load More Anything: from n/a through 3.3.3.
Affected versions: Min -, max -.
Status: vulnerable