Every CVE whose affected-product data names Advanced Ajax Page Loader Project Advanced Ajax Page Loader, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2016-10929 — CVSS 5.3 (medium): The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in.