Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown
CVE-2023-25447
Disclosure Date: May 22, 2023 (last updated October 08, 2023)
Cross-Site Request Forgery (CSRF) vulnerability in Inkthemescom ColorWay theme <= 4.2.3 versions.
0
Attacker Value
Unknown
CVE-2022-3750
Disclosure Date: November 21, 2022 (last updated November 08, 2023)
The has a CSRF vulnerability that allows the deletion of a post without using a nonce or prompting for confirmation.
0
Attacker Value
Unknown
CVE-2022-1251
Disclosure Date: August 22, 2022 (last updated October 08, 2023)
The Ask me WordPress theme before 6.8.4 does not perform nonce checks when processing POST requests to the Edit Profile page, allowing an attacker to trick a user to change their profile information by sending a crafted request.
0
Attacker Value
Unknown
CVE-2016-10961
Disclosure Date: September 16, 2019 (last updated November 27, 2024)
The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter.
0
