WP-Safety

Cliptakes Security & Risk Analysis

wordpress.org/plugins/cliptakes

Intuitive All-in-one Video Interview and Editing Plugin. Saving Recruiters Time and Capturing Talent, Masterfully.

40 active installs v1.3.6 PHP 5.6+ WP 4.7+ Updated Unknown
hiringjob-boardrecruitmentvideo-interviewwebcam-recorder
99
A · Safe
CVEs total1
Unpatched0
Last CVEJan 22, 2025
Plugin page Download
Safety Verdict

Is Cliptakes Safe to Use in 2026?

Generally Safe

Score 99/100

Cliptakes has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jan 22, 2025
Risk Assessment

The 'cliptakes' plugin v1.3.6 presents a mixed security posture. On the positive side, the plugin demonstrates good practices by using prepared statements for all SQL queries and a high percentage of output escaping. It also incorporates a reasonable number of nonce and capability checks. However, the presence of 10 AJAX handlers with 2 lacking authentication checks represents a significant concern, potentially exposing these endpoints to unauthorized access and further exploitation.

The static analysis did not reveal any critical taint flows or dangerous functions, which is a positive indicator. However, the absence of taint analysis data (total flows analyzed: 0) means we cannot definitively rule out more subtle vulnerabilities that might not be caught by basic function analysis. The plugin's vulnerability history shows a single medium severity Cross-Site Scripting (XSS) vulnerability that was patched. While this is encouraging, it also highlights that XSS can be a concern within this plugin's codebase, and vigilance is still required.

In conclusion, while the plugin has strengths in secure SQL handling and output escaping, the unprotected AJAX endpoints are a notable weakness that requires immediate attention. The lack of comprehensive taint analysis also leaves room for unknown risks. The plugin's single past vulnerability, though medium severity, warrants continued monitoring for similar issues.

Key Concerns

  • AJAX handlers without authentication checks
  • Limited taint analysis coverage
  • Past medium severity XSS vulnerability
Vulnerabilities
1

Cliptakes Security Vulnerabilities

CVEs by Year

1 CVE in 2025
2025
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2024-13389medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cliptakes <= 1.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

Jan 22, 2025 Patched in 1.3.5 (1d)
Code Analysis
Analyzed Mar 16, 2026

Cliptakes Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
14
75 escaped
Nonce Checks
9
Capability Checks
11
File Operations
2
External Requests
3
Bundled Libraries
0

Output Escaping

84% escaped89 total outputs
Attack Surface
2 unprotected

Cliptakes Attack Surface

Entry Points17
Unprotected2

AJAX Handlers 10

authwp_ajax_cliptakes_create_accountadmin\class-cliptakes-admin.php:68
authwp_ajax_cliptakes_reset_intro_htmladmin\class-cliptakes-admin.php:70
authwp_ajax_cliptakes_reset_signup_htmladmin\class-cliptakes-admin.php:71
authwp_ajax_cliptakes_reset_upload_before_htmladmin\class-cliptakes-admin.php:72
authwp_ajax_cliptakes_reset_upload_after_htmladmin\class-cliptakes-admin.php:73
authwp_ajax_cliptakes_fetch_interview_dataadmin\class-cliptakes-admin.php:75
authwp_ajax_cliptakes_interview_data_displayadmin\class-cliptakes-admin.php:76
authwp_ajax_cliptakes_create_embed_pageadmin\class-cliptakes-admin.php:77
authwp_ajax_cliptakes_update_subscription_statusadmin\class-cliptakes-admin.php:81
authwp_ajax_cliptakes_send_deactivation_feedbackadmin\class-cliptakes-admin.php:83

Shortcodes 7

[cliptakes_input_first_name] includes\class-cliptakes.php:199
[cliptakes_input_last_name] includes\class-cliptakes.php:200
[cliptakes_input_email] includes\class-cliptakes.php:201
[cliptakes_input_accept_policy] includes\class-cliptakes.php:202
[cliptakes_custom_input] includes\class-cliptakes.php:203
[cliptakes_custom_select] includes\class-cliptakes.php:204
[cliptakes_interview] includes\class-cliptakes.php:205
WordPress Hooks 14
actioncliptakes_general_settings_page_createdadmin\class-cliptakes-admin.php:65
actioncliptakes_api_settings_page_createdadmin\class-cliptakes-admin.php:66
actionadd_option_cliptakes_api_settings_optionsadmin\class-cliptakes-admin.php:79
actionupdate_option_cliptakes_api_settings_optionsadmin\class-cliptakes-admin.php:80
actionplugins_loadedincludes\class-cliptakes.php:145
actionplugins_loadedincludes\class-cliptakes.php:162
actionadmin_enqueue_scriptsincludes\class-cliptakes.php:177
actionadmin_enqueue_scriptsincludes\class-cliptakes.php:178
actionadmin_menuincludes\class-cliptakes.php:179
actionadmin_initincludes\class-cliptakes.php:180
actioncurrent_screenincludes\class-cliptakes.php:181
filterplugin_action_links_cliptakes/cliptakes.phpincludes\class-cliptakes.php:183
actionwp_enqueue_scriptsincludes\class-cliptakes.php:197
actionwp_enqueue_scriptsincludes\class-cliptakes.php:198
Maintenance & Trust

Cliptakes Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedUnknown
PHP min version5.6
Downloads4K

Community Trust

Rating100/100
Number of ratings4
Active installs40
Alternatives

Cliptakes Alternatives

Hiring Center

Hiring Center

hiring-center

A
100

Create a powerful job portal and professional career page directly within WordPress. Simplify your recruitment workflow and manage job listings.

0 No CVEs
WP Job Manager

WP Job Manager

wp-job-manager

A
91

Create a careers page for your company website, or build a public job board for your community.

80K 7 CVEs
JobWP – Job Board, Job Listing, Career Page and Recruitment Plugin

JobWP – Job Board, Job Listing, Career Page and Recruitment Plugin

jobwp

B
83

Create a modern job board and career page on WordPress. Accept job listings, manage applications, and grow a recruitment platform.

1K 7 CVEs
Employee, Leave and Recruitment Management System – Crew HRM

Employee, Leave and Recruitment Management System – Crew HRM

hr-management

A
98

Create career pages for job listings, hiring or recruiting great talent with Crew HRM. It helps manage employee info, leave requests, onboarding

200 1 CVE
Jobus – Job Board, Recruitment & Hiring Platform

Jobus – Job Board, Recruitment & Hiring Platform

jobus

A
100

The ultimate WordPress Job Board plugin. Create a professional recruitment website with unlimited job listings, candidate profiles, and company pages.

80 No CVEs
Developer Profile

Cliptakes Developer Profile

Cliptakes Ltd

1 plugin · 40 total installs

99
trust score
Avg Security Score
99/100
Avg Patch Time
1 days
View full developer profile
Detection Fingerprints

How We Detect Cliptakes

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/cliptakes/admin/css/cliptakes-plugin-page.css/wp-content/plugins/cliptakes/admin/js/cliptakes-plugin-page.js/wp-content/plugins/cliptakes/admin/css/cliptakes-admin.css/wp-content/plugins/cliptakes/admin/js/cliptakes-admin.js
Script Paths
/wp-content/plugins/cliptakes/admin/js/cliptakes-plugin-page.js/wp-content/plugins/cliptakes/admin/js/cliptakes-admin.js
Version Parameters
cliptakes-plugin-page?ver=cliptakes-admin?ver=

HTML / DOM Fingerprints

JS Globals
cliptakes_ajax_objcliptakes_i18n
REST Endpoints
/wp-json/cliptakes/v1/create_account/wp-json/cliptakes/v1/reset_intro_html/wp-json/cliptakes/v1/reset_signup_html/wp-json/cliptakes/v1/reset_upload_before_html/wp-json/cliptakes/v1/reset_upload_after_html/wp-json/cliptakes/v1/fetch_interview_data/wp-json/cliptakes/v1/interview_data_display/wp-json/cliptakes/v1/create_embed_page/wp-json/cliptakes/v1/update_subscription_status/wp-json/cliptakes/v1/send_deactivation_feedback
FAQ

Frequently Asked Questions about Cliptakes