CVE-2015-1579

2015-02-11T14:59:06
ID CVE-2015-1579
Type cve
Reporter NVD
Modified 2017-07-17T09:18:04

Description

Directory traversal vulnerability in the Elegant Themes Divi theme for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter in a revslider_show_image action to wp-admin/admin-ajax.php. NOTE: this vulnerability may be a duplicate of CVE-2014-9734.