WordPress Plugin Vulnerabilities
ElegantThemes - Privilege Escalation
Description
An information disclosure vulnerability was found in the Divi Builder (included in our Divi and Extra themes, as well as our Divi Builder plugin) which resulted in the potential for user privilege escalation. If properly exploited, it could allow registered users, regardless of role, on your WordPress installation to perform a subset of actions within the Divi Builder, including the ability to manipulate posts.
Affects Plugins
Affects Themes
References
Classification
Type
PRIVESC
OWASP top 10
CWE
CVSS
Miscellaneous
Submitter
ethicalhack3r
Submitter twitter
Verified
No
WPVDB ID
Timeline
Publicly Published
2016-02-18 (about 8 years ago)
Added
2016-02-18 (about 8 years ago)
Last Updated
2020-11-26 (about 3 years ago)