Is "Divi" safe?
WordPress Theme security and safety information.
Rating: Good (current version safe)
Recommendations
Divi: Theme Details
| Type: | Theme |
| Author: | Elegant Themes |
| URL: | https://www.elegantthemes.com/gallery/divi/ |
| Latest Version: | 4.22.2 |
Divi: Security Information
| Insecure versions: | Up To 4.20.2 |
| Known since: | 2023-08-10 02:00:27 |
| Insecure versions: | Versions 3.0 - 4.5.2 |
| Known since: | 2020-08-04 16:05:39 |
| Description: | A vulnerability in this theme gives authenticated attackers with at least contributor-level permissions the ability to upload arbitrary files and execute code. |
| Insecure versions: | Up To 3.17.2 |
| Known since: | 2020-03-25 13:41:18 |
| Description: | A privilege escalation vulnerability was discovered that could allow low level users, such as Authors, to use unfiltered HTML inside of post content when using the Divi Builder. Using such code in posts is typically reserved for admins. |
| Insecure versions: | Up To 2.6.2 |
| Known since: | 2020-03-25 13:35:50 |
| Description: | A vulnerability was found in the Divi theme which, if properly exploited, could allow registered users (regardless of role) on your WordPress installation to perform a subset of actions within the Divi Builder, including the ability to manipulate posts. |
| Insecure versions: | Versions 3.23 - 4.0.9 |
| Known since: | 2020-01-07 07:27:38 |
| Insecure versions: | Versions 1.0 - 3.0.95 |
| Known since: | 2018-04-06 05:37:28 |
| Insecure versions: | Up To 2.3.3 |
| Known since: | 2016-02-17 11:35:31 |
| Description: | Older versions of some themes and plugins by Elegant Themes are vulnerable to allowing low access users escalated access to your site, such as editing site settings. If you aren't able to upgrade your theme or plugin immediately, then Elegant Themes has created a free security patcher plugin for all users (past and current) that should close the vulnerability. You can contact them for additional details. |
| Insecure versions: | Up To 2.3.3 |
| Known since: | 2016-02-17 11:35:31 |
| Description: | Older versions of some themes and plugins by Elegant Themes are vulnerable to allowing low access users escalated access to your site, such as editing site settings. If you aren't able to upgrade your theme or plugin immediately, then Elegant Themes has created a free security patcher plugin for all users (past and current) that should close the vulnerability. You can contact them for additional details. |
Divi: Safety Recommendations
We have rated Divi as Good (current version safe) which means that we have found vulnerabilities in older versions.
We recommend that you only use the latest version of Divi.
Divi: Staying Up-to-date
Make sure your installation of Divi is safe with the following free Jetpack services for WordPress sites:
- Updates & Management
Turn on auto-updates for Divi or manage in bulk. - Prevent Infiltrations
Automatic protection against brute force attacks and secure sign on.
Divi: Keeping Safe
If you're running a business, ecommerce, news, or other critical website, Jetpack also provides additional indispensable services:
- Automated Backups
Full backup of your entire site with unlimited storage space. - Restores & Migrations
Restore or migrate your site from a backup with one click. - Security Scanning
Regular, automated scans of your site for malware, threats, and hacks. - Expert Support
Fast, priority support for any WordPress security issue.
About this information
This WordPress security information is part of our security library and is brought to you by Jetpack as part of our committment to a safer WordPress experience.
If you have any questions, please do not hesitate to contact us.
Jetpack 