WP-Safety

Ajax Load More for Elementor Security & Risk Analysis

wordpress.org/plugins/ajax-load-more-for-elementor

Ajax Load More for Elementor improves user experience and gives them a chance to view more of your content with an Ajax powered Load More Button.

70 active installs v1.0.0 PHP 5.4+ WP 4.6+ Updated Jul 18, 2022
ajax-load-more-elementorelementor-load-more-postsload-more-button-elementor
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Ajax Load More for Elementor Safe to Use in 2026?

Generally Safe

Score 85/100

Ajax Load More for Elementor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The "ajax-load-more-for-elementor" plugin v1.0.0 exhibits a concerning security posture due to a significant number of unprotected AJAX handlers. While the plugin demonstrates good practices in its use of prepared statements for SQL queries and a high percentage of properly escaped output, the lack of authorization checks on all identified AJAX entry points presents a substantial risk. This means any unauthenticated user could potentially trigger these handlers, leading to unintended actions or information disclosure if the handlers perform sensitive operations.

The static analysis revealed 5 AJAX handlers, all of which lack authentication checks. Furthermore, the taint analysis identified 2 flows with unsanitized paths, indicating a potential for attackers to influence file paths or other critical data, though no critical or high severity vulnerabilities were flagged by this analysis. The absence of any recorded historical vulnerabilities (CVEs) is a positive sign, suggesting a potential lack of past exploitable issues or a diligent patching history. However, this cannot entirely mitigate the immediate risks identified in the current code.

In conclusion, the plugin has strengths in its database interaction and output handling. Nevertheless, the open nature of its AJAX endpoints is a significant weakness that could be exploited. The presence of unsanitized paths in taint flows, though not rated as critical, warrants attention. The lack of historical vulnerabilities is a good indicator, but the current lack of security on core entry points is a critical oversight that needs immediate remediation.

Key Concerns

  • Unprotected AJAX handlers
  • Flows with unsanitized paths
  • Missing capability checks on AJAX
  • Missing nonce checks on AJAX
Vulnerabilities
None known

Ajax Load More for Elementor Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Ajax Load More for Elementor Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
18
76 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

81% escaped94 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
goodbye_form_callback (class-plugin-deactivate-feedback.php:365)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
5 unprotected

Ajax Load More for Elementor Attack Surface

Entry Points5
Unprotected5

AJAX Handlers 5

noprivwp_ajax_load_postsclass-ajax.php:15
authwp_ajax_load_postsclass-ajax.php:16
authwp_ajax_pd_alm_goodbye_formclass-plugin-deactivate-feedback.php:63
authwp_ajax_wb_alm_review_transientclass-plugin-review.php:21
authwp_ajax_process_pd_alm_promo_formsupport-page\class-support-page.php:24
WordPress Hooks 25
actionadmin_menuadmin\admin-pages.php:2
actionadmin_enqueue_scriptsadmin\admin-pages.php:99
actionadmin_initadmin\admin-pages.php:112
actionplugins_loadedadmin\ajax-load-more-utils.php:15
actionadmin_noticesadmin\ajax-load-more-utils.php:21
actionadmin_noticesadmin\ajax-load-more-utils.php:27
actionadmin_noticesadmin\ajax-load-more-utils.php:33
actionadmin_enqueue_scriptsadmin\ajax-load-more-utils.php:38
actionelementor/frontend/after_enqueue_stylesadmin\ajax-load-more-utils.php:39
actionelementor/frontend/after_register_scriptsadmin\ajax-load-more-utils.php:42
actionelementor/widgets/registeradmin\ajax-load-more-utils.php:45
actionelementor/initajax-load-more-for-elementor.php:39
actionplugins_loadedajax-load-more-for-elementor.php:90
actionwp_footerajax-load-more-for-elementor.php:94
filtercustom_menu_orderajax-load-more-for-elementor.php:133
actionupgrader_process_completeajax-load-more-for-elementor.php:142
actioninitajax-load-more-for-elementor.php:143
actionadmin_footer-plugins.phpclass-plugin-deactivate-feedback.php:62
actionadmin_enqueue_scriptsclass-plugin-deactivate-feedback.php:65
filterwp_mail_content_typeclass-plugin-deactivate-feedback.php:119
actionadmin_noticesclass-plugin-review.php:19
actionadmin_footerclass-plugin-review.php:20
actionwp_headsupport-page\class-support-page.php:6
actionadmin_enqueue_scriptssupport-page\class-support-page.php:142
actionadmin_menusupport-page\class-support-page.php:171
Maintenance & Trust

Ajax Load More for Elementor Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11
Last updatedJul 18, 2022
PHP min version5.4
Downloads4K

Community Trust

Rating60/100
Number of ratings2
Active installs70
Alternatives

Ajax Load More for Elementor Alternatives

Infinite Scroll for Elementor with Ajax

Infinite Scroll for Elementor with Ajax

infinite-scroll-for-elementor-with-ajax

A
85

Infinite Scroll for Elementor improves user experience and gives them a chance to view more of your content with an Ajax-powered Scrollbar.

20 No CVEs
Developer Profile

Ajax Load More for Elementor Developer Profile

Plugin Devs

14 plugins · 18K total installs

78
trust score
Avg Security Score
85/100
Avg Patch Time
60 days
View full developer profile
Detection Fingerprints

How We Detect Ajax Load More for Elementor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/ajax-load-more-for-elementor/admin/js/admin-ajax-load-more.js/wp-content/plugins/ajax-load-more-for-elementor/admin/css/admin-ajax-load-more.css/wp-content/plugins/ajax-load-more-for-elementor/public/css/public-ajax-load-more.css/wp-content/plugins/ajax-load-more-for-elementor/public/js/public-ajax-load-more.js
Script Paths
/wp-content/plugins/ajax-load-more-for-elementor/admin/js/admin-ajax-load-more.js/wp-content/plugins/ajax-load-more-for-elementor/admin/js/codemirror/lib/codemirror.min.js/wp-content/plugins/ajax-load-more-for-elementor/admin/js/codemirror/mode/css/css.min.js/wp-content/plugins/ajax-load-more-for-elementor/admin/js/codemirror/mode/javascript/javascript.min.js/wp-content/plugins/ajax-load-more-for-elementor/admin/js/codemirror/addon/edit/closebrackets.min.js/wp-content/plugins/ajax-load-more-for-elementor/admin/js/codemirror/addon/edit/matchbrackets.min.js+1 more
Version Parameters
ajax-load-more-for-elementor/admin/css/admin-ajax-load-more.css?ver=ajax-load-more-for-elementor/public/css/public-ajax-load-more.css?ver=ajax-load-more-for-elementor/admin/js/admin-ajax-load-more.js?ver=ajax-load-more-for-elementor/admin/js/codemirror/lib/codemirror.min.js?ver=ajax-load-more-for-elementor/admin/js/codemirror/mode/css/css.min.js?ver=ajax-load-more-for-elementor/admin/js/codemirror/mode/javascript/javascript.min.js?ver=ajax-load-more-for-elementor/admin/js/codemirror/addon/edit/closebrackets.min.js?ver=ajax-load-more-for-elementor/admin/js/codemirror/addon/edit/matchbrackets.min.js?ver=ajax-load-more-for-elementor/public/js/public-ajax-load-more.js?ver=

HTML / DOM Fingerprints

CSS Classes
pd_alm-up-pro-link
HTML Comments
/* Welcome to the Custom CSS editor! Please add all your custom CSS here and avoid modifying the core plugin files. Don't use <style> tag *//* Welcome to the Custom JS editor! Please add all your custom JS here and avoid modifying the core plugin files. Don't use <script> tag */
Data Attributes
name="pd_alm_custom_css"id="pd_alm_custom_css"name="pd_alm_custom_js"id="pd_alm_custom_js"
FAQ

Frequently Asked Questions about Ajax Load More for Elementor