Inkthemes Security Vulnerabilities

CVE-2022-3750

The has a CSRF vulnerability that allows the deletion of a post without using a nonce or prompting for...

CVE-2023-25447

Cross-Site Request Forgery (CSRF) vulnerability in Inkthemescom ColorWay theme <= 4.2.3...

CVE-2016-10961

The colorway theme before 3.4.2 for WordPress has XSS via the contactName...

CVE-2022-1251

The Ask me WordPress theme before 6.8.4 does not perform nonce checks when processing POST requests to the Edit Profile page, allowing an attacker to trick a user to change their profile information by sending a crafted...