Load More Posts Security & Risk Analysis
wordpress.org/plugins/load-more-postsEasily add Load More Posts plugin to your WordPress blog with the official Load More Posts for WordPress plugin. Use shortcode (see admin setting...
Is Load More Posts Safe to Use in 2026?
Mostly Safe
Score 71/100Load More Posts is generally safe to use though it hasn't been updated recently. 1 past CVE were resolved. Keep it updated.
The load-more-posts plugin v1.5.0 exhibits a mixed security posture. While it demonstrates good practices by not utilizing dangerous functions, performing 100% of its SQL queries with prepared statements, and having no file operations or external HTTP requests, there are significant concerns regarding its attack surface and vulnerability history. Specifically, two AJAX handlers lack authentication checks, presenting a clear entry point for unauthorized actions. The plugin also has a medium severity Cross-Site Request Forgery (CSRF) vulnerability that is currently unpatched, indicating a historical tendency towards such issues. Approximately 35% of its output is not properly escaped, which could lead to XSS vulnerabilities if malicious data is processed. Overall, while the core database interactions are secure, the lack of robust input validation and authentication on AJAX endpoints, combined with an unpatched CSRF vulnerability, significantly increases its risk profile.
Key Concerns
- Unpatched CVEs present
- AJAX handlers without auth checks
- Unescaped output identified
- No nonce checks on AJAX handlers
Load More Posts Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Load More Posts <= 1.4.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting
Load More Posts Code Analysis
Output Escaping
Load More Posts Attack Surface
AJAX Handlers 2
Shortcodes 1
WordPress Hooks 3
Maintenance & Trust
Load More Posts Maintenance & Trust
Maintenance Signals
Community Trust
Load More Posts Alternatives
Ajax Load More for Elementor
ajax-load-more-for-elementor
Ajax Load More for Elementor improves user experience and gives them a chance to view more of your content with an Ajax powered Load More Button.
Ajax Load More – Infinite Scroll, Load More, & Lazy Load
ajax-load-more
Add infinite scroll, lazy loading, and load more buttons to posts, pages, and WooCommerce products — fast and fully customizable for WordPress.
Load More Products for WooCommerce
load-more-products-for-woocommerce
Load products from next page via AJAX with infinite scrolling or load more products button
Load More Anything
ajax-load-more-anything
Add Load More button for your blog post, custom type, Comments, page, Category, Recent Posts, Woocommerce Product, custom Div or whatever you want.
Ajax Load More for Advanced Custom Fields
ajax-load-more-for-acf
Ajax Load More extension that adds compatibility with various field types for Advanced Custom Fields.
Load More Posts Developer Profile
1 plugin · 100 total installs
How We Detect Load More Posts
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/load-more-posts/css/custom.css/wp-content/plugins/load-more-posts/js/custom.js/wp-content/plugins/load-more-posts/imgs/calendar.svg/wp-content/plugins/load-more-posts/imgs/comment.svg/wp-content/plugins/load-more-posts/js/custom.jsload-more-posts/css/custom.css?ver=1.3.3load-more-posts/js/custom.js?ver=1.2.2HTML / DOM Fingerprints
wp_load-morewp_all_posts_sectionnews-block-thumbnews-block-wrappernews-block-text-wrapnews-block-metaentry-metanews-categories+4 moredata-post-typedata-cat-iddata-perpagedata-loadmorebtndata-hidebtndata-bg+8 moreloadMoreJS/wp-json/loadmorepost/v1/get_new_data_items<button class="wp_load-more" data-post-type="" data-cat-id="" data-perpage="" data-loadmorebtn="