CVE-2015-1579MEDIUM · 5.0Long-tail

CVE-2015-1579

Directory traversal vulnerability in the Elegant Themes Divi theme for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter in a revslider_show_image action to wp-admin/admin-ajax.php. NOTE: this vulnerability may be a duplicate of CVE-2014-9734.

Disclosed

2015-02-11

4136 days ago

Still scanned

11 years later

ongoing background-scan activity

7-day events

across 0 distinct IPs

7-day spread

0 ASN · 0 cty

0 active days

In-the-wild assessment

Some activity observed but below the in-the-wild threshold. Last 7 days: 0/5 IPs, 0/3 ASNs, 0/3 countries, 0/2 active days. Likely a researcher PoC or single campaign rather than wide exploitation.

Daily events · last 365 days

2025-06-11peak 6 · total 122026-06-10

Top ASNs

No events captured yet.

Top countries

No events captured yet.

References

http://www.exploit-db.com/exploits/36039
https://wpvulndb.com/vulnerabilities/7540
http://www.exploit-db.com/exploits/36039
https://wpvulndb.com/vulnerabilities/7540

↗ NVD ↗ CISA KEV ↗ Search analyses