Dcooney Ajax Load More – Infinite Scroll, Load More, & Lazy Load
8 CVEs affecting Dcooney Ajax Load More – Infinite Scroll, Load More, & Lazy Load. Latest disclosed: 2026-01-31. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-2433 | High | 7.5 | 2022-09-06 | The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to deserialization of untrusted input via the 'alm_repeaters_export' paramete… |
CVE-2025-4775 | Medium | 6.4 | 2025-06-17 | The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the data-button-label HTML attribute in al… |
CVE-2024-8505 | Medium | 6.4 | 2024-10-02 | The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘button_label’ parameter in all versio… |
CVE-2024-4711 | Medium | 6.4 | 2024-06-01 | The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ajax_load_more shortcode in versions u… |
CVE-2025-15525 | Medium | 5.3 | 2026-01-31 | The Ajax Load More – Infinite Scroll, Load More, & Lazy Load plugin for WordPress is vulnerable to unauthorized access of data due to incorrect authorization o… |
CVE-2024-1790 | Medium | 4.9 | 2024-04-09 | The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 7.0.1 via the 'type'… |
CVE-2022-2943 | Medium | 4.9 | 2022-09-06 | The WordPress Infinite Scroll – Ajax Load More plugin for Wordpress is vulnerable to arbitrary file reading in versions up to, and including, 5.5.3 due to insu… |
CVE-2022-2945 | Medium | 4.9 | 2022-09-06 | The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Directory Traversal in versions up to, and including, 5.5.3 via the 'type'… |