← Back

Colorway

colorway

Vendor: Inkthemes • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-25447
1Inkthemes
1Colorway
Jun 17, 2026
May 22, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
Cross-Site Request Forgery (CSRF) vulnerability in Inkthemescom ColorWay theme <= 4.2.3 versions.
CVE-2016-10961
1Inkthemes
1Colorway
Nov 21, 2024
Sep 16, 2019
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter.