CVE 2016-10961
The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter.
See the
CVE page on Mitre.org
for more details.
The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter.