WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Talk to sales
WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Talk to sales
Themes Vulnerabilities
Divi
2023-05-09
Divi < 4.20.3 - Contributor+ Stored XSS
Fixed in version 4.20.3
2020-08-03
Elegant Themes (Divi 3.0 - 4.5.2, Extra 2.0 - 4.5.2, Divi Builder 2.0 - 4.5.2) - Authenticated Arbitrary File Upload
Fixed in version 4.5.3
2020-01-02
ElegantThemes (Divi, Extra, divi-builder < 4.0.10) - Authenticated Code Injection
Fixed in version 4.0.10
2018-10-30
ElegantThemes (Divi, Extra, divi-builder) - Authenticated Stored Cross-Site Scripting (XSS)
Fixed in version 3.17.3
2016-02-18
ElegantThemes - Privilege Escalation
Fixed in version 2.6.4
Fixed in version 4.5.3Fixed in version 4.0.10Fixed in version 3.17.3Fixed in version 4.5.3Fixed in version 4.0.10Fixed in version 3.17.3