Ajax Load More < 7.1.0 – Authenticated (Admin+) Directory Traversal to Arbitrary File Read | CVE 2024-1790 | Plugin Vulnerabilities

Description

The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 7.0.1 via the 'type' parameter. This makes it possible for authenticated attackers, with administrator-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information. This is limited to Windows instances.

Affects Plugins

Fixed in 7.1.0

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/86090ab4-9f1d-4a92-a302-118524a5ffaa

Classification

Type

LFI

OWASP top 10

CWE

CVSS

Miscellaneous

Original Researcher

Hoa Le Ngoc (lengochoa)

Verified

No

WPVDB ID

8f269342-96a6-4f42-bdc5-a81d8707e7f3

Timeline

Publicly Published

2024-03-26 (about 2 years ago)

Added

2024-03-26 (about 2 years ago)

Last Updated

2024-03-26 (about 2 years ago)

Other

Published

Title

Published

2025-10-03

Title

PixelYourSite < 11.1.2 - Admin+ LFI

Published

2016-07-10

Title

Ultimate Member < 1.3.65 - Local File Inclusion

Published

2025-01-16

Title

XLSXviewer <= 2.1.1 - Authenticated (Subscriber+) Arbitrary File Deletion

Published

2025-06-09

Title

CLEVER <= 2.6 - Unauthenticated Arbitrary File Download

Published

2022-01-31

Title

Essential Addons for Elementor < 5.0.5 - Unauthenticated LFI