Vulnerabilities for DIVI (...) - CXSECURITY.COM

Vulnerabilities for 'DIVI'

2015-02-11

CVE-2015-1579

Directory traversal vulnerability in the Elegant Themes Divi theme for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter in a revslider_show_image action to wp-admin/admin-ajax.php. NOTE: this vulnerability may be a duplicate of CVE-2014-9734.

Copyright 2024, cxsecurity.com