Lucene search

K
patchstackRasoul JahanshahiPATCHSTACK:3A4825874861DE012D7201480A9F7E21
HistoryAug 22, 2022 - 12:00 a.m.

WordPress Ajax Load More plugin <= 5.5.3 - PHAR Deserialization via Cross-Site Request Forgery (CSRF) vulnerability

2022-08-2200:00:00
Rasoul Jahanshahi
patchstack.com
16

0.003 Low

EPSS

Percentile

70.8%

PHAR Deserialization via Cross-Site Request Forgery (CSRF) vulnerability discovered by Rasoul Jahanshahi in WordPress Ajax Load More plugin (versions <= 5.5.3).

Solution

           Update the WordPress Ajax Load More plugin to the latest available version (at least 5.5.4).
CPENameOperatorVersion
ajax load morele5.5.3

0.003 Low

EPSS

Percentile

70.8%

Related for PATCHSTACK:3A4825874861DE012D7201480A9F7E21