← Back

Extra

extra

Vendor: Elegantthemes • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-35945
1Elegantthemes
4Divi
Divi BuilderDivi Extra+1 more
Feb 4, 2026
Jan 1, 2021
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
An issue was discovered in the Divi Builder plugin, Divi theme, and Divi Extra theme before 4.5.3 for WordPress. Authenticated attackers, with contributor-level or above capabilities, can upload arbitrary files, includin...Show more
An issue was discovered in the Divi Builder plugin, Divi theme, and Divi Extra theme before 4.5.3 for WordPress. Authenticated attackers, with contributor-level or above capabilities, can upload arbitrary files, including .php files. This occurs because the check for file extensions is on the client side.Show less
CVE-2016-11002
1Elegantthemes
1Extra
Nov 21, 2024
Sep 20, 2019
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
The Elegant Themes Extra theme before 1.2.4 for WordPress has privilege escalation.