cleantalk
Vulnerabilities and Security Researches

Time Clock – A WordPress Employee & Volunteer Time Clock Plugin, CVE-2025-47516

CVE, Research URL

CVE-2025-47516

Home page URL

Security reports for Time Clock – A WordPress Employee & Volunteer Time Clock Plugin

Application

Time Clock – A WordPress Employee & Volunteer Time Clock Plugin

Published on
May 07, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Scott Paterson Time Clock allows Stored XSS. This issue affects Time Clock: from n/a through 1.2.3.
Affected versions
Min -, max 1.3.
Status
vulnerable
Previous vulnerability researches
Ultimate Blocks – WordPress Blocks Plugin (CVE-2025-1312) , Mar 27, 2025
Ultimate Blocks – WordPress Blocks Plugin (CVE-2024-6362) , Jul 31, 2024
Ultimate Blocks – WordPress Blocks Plugin (CVE-2022-4974) , Nov 15, 2024
Ultimate Blocks – WordPress Blocks Plugin (CVE-2025-31077) , Apr 02, 2025
Ultimate Blocks – WordPress Blocks Plugin (CVE-2024-4655) , Jul 03, 2024
New vulnerability
Music Player for WooCommerce (CVE-2025-47472) , May 09, 2025
Integration for WooCommerce and Salesforce (CVE-2025-47455) , May 09, 2025
WP Gravity Forms Zendesk (CVE-2025-47456) , May 09, 2025
Cozy Blocks – Page Builder Blocks for FSE and Gutenberg Editor, Gutenberg Blocks, WooCommerce Blocks, Post Blocks, Slider (CVE-2025-47485) , May 09, 2025
DoFollow Case by Case (CVE-2025-47624) , May 09, 2025