cleantalk
Vulnerabilities and Security Researches

Attendance Manager, CVE-2025-39515

CVE, Research URL

CVE-2025-39515

Home page URL

Security reports for Attendance Manager

Application

Attendance Manager

Published on
Apr 16, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in tnomi Attendance Manager allows Stored XSS. This issue affects Attendance Manager: from n/a through 0.6.2.
Affected versions
Min -, max 0.6.2.
Status
vulnerable
Previous vulnerability researches
Attendance Manager (CVE-2025-39515) , Apr 18, 2025
Attendance Manager (CVE-2019-5970) , Jun 06, 2024
Attendance Manager (CVE-2019-5971) , Jun 06, 2024
New vulnerability
Faculty Staff and Student Directory Plugin – Campus Directory (CVE-2025-8313) , Aug 06, 2025
Chartify – WordPress Chart Plugin (CVE-2025-54673) , Aug 05, 2025
Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction (CVE-2025-54017) , Aug 05, 2025
Motors – Car Dealer, Classifieds & Listing (CVE-2025-54691) , Aug 05, 2025
Ebook Store (CVE-2025-54702) , Aug 05, 2025