WordPress Ajax Load More plugin version 5.3.1 suffers from an authenticated remote SQL injection vulnerability.