CVE-2015-1579
11.02.2015, 19:59
Directory traversal vulnerability in the Elegant Themes Divi theme for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter in a revslider_show_image action to wp-admin/admin-ajax.php. NOTE: this vulnerability may be a duplicate of CVE-2014-9734.
Vendor | Product | Version |
---|---|---|
elegant_themes | divi | - |
𝑥
= Vulnerable software versions