Divi is a great WordPress theme, very easy to use and can cut down website development time by a lot. We’ve designed a number of good looking websites using it but Elegant Themes released a security update this week.
Some cross-site request forgery checks within our core product framework could be potentially bypassed. In all cases, these checks were also hardened by user permission checks, however, user permissions checks alone are not sufficient to protect against all CSRF vectors.
Therefore if you are using Divi theme or infact any plugin from Elegant Themes (which includes Divi Page Builder, Monarch, Bloom or Extra) then it’s recommended you update to the latest version immediately.
Hacked WordPress sites are increasingly common and the main reasons are weak passwords, out of date themes or out of date plugins. If you have had your WordPress website hacked recently then get in touch with us and we can help you get back online.