cleantalk
Vulnerabilities and Security Researches

ColorWay, CVE-2025-59003

CVE, Research URL

CVE-2025-59003

Home page URL

Security reports for ColorWay

Application

ColorWay

Published on
Dec 31, 2025
Research Description
Insertion of Sensitive Information Into Sent Data vulnerability in inkthemescom ColorWay colorway allows Retrieve Embedded Sensitive Data.This issue affects ColorWay: from n/a through <= 4.2.3.
Affected versions
max 4.2.3.
Status
vulnerable
Previous vulnerability researches
Booking Calendar &#8211; Clockwork SMS (CVE-2017-17780) , Jun 07, 2024
Booking Calendar &#8211; Clockwork SMS (CVE-2017-18555) , Jun 07, 2024
New vulnerability
AI Engine (CVE-2025-8268) , Apr 24, 2026
Video gallery and Player (CVE-2026-6443) , Apr 24, 2026
Master Slider &#8211; Responsive Touch Slider (CVE-2025-58025) , Apr 24, 2026
Trending/Popular Post Slider and Widget (CVE-2026-6443) , Apr 24, 2026
JetWidgets For Elementor (CVE-2025-8195) , Apr 24, 2026