Vulnerabilities and Security Researches

Vulnerabilities and security researches forcolorway colorway

Direction: ascending

Jun 10, 2024

ColorWay # CVE-2023-25447

CVE, Research URL: CVE-2023-25447
Home page URL: Security reports for ColorWay
Application: ColorWay
Date: May 22, 2023
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in Inkthemescom ColorWay theme <= 4.2.3 versions.
Affected versions: max 4.2.3.
Status: vulnerable

ColorWay # CVE-2016-10961

CVE, Research URL: CVE-2016-10961
Home page URL: Security reports for ColorWay
Application: ColorWay
Date: Sep 16, 2019
Research Description: The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter.
Affected versions: max 3.4.2.
Status: vulnerable

Apr 23, 2026

ColorWay # CVE-2025-59003

CVE, Research URL: CVE-2025-59003
Home page URL: Security reports for ColorWay
Application: ColorWay
Date: Dec 31, 2025
Research Description: Insertion of Sensitive Information Into Sent Data vulnerability in inkthemescom ColorWay colorway allows Retrieve Embedded Sensitive Data.This issue affects ColorWay: from n/a through <= 4.2.3.
Affected versions: max 4.2.3.
Status: vulnerable