cleantalk
Vulnerabilities and Security Researches

Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website, CVE-2021-24574

CVE, Research URL

CVE-2021-24574

Home page URL

Security reports for Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website

Application

Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website

Published on
Aug 23, 2021
Research Description
The Simple Banner WordPress plugin before 2.10.4 does not sanitise and escape one of its settings, allowing high privilege users such as admin to use Cross-Site Scripting payload even when the unfiltered_html capability is disallowed.
Affected versions
Min -, max 2.10.4.
Status
vulnerable
Previous vulnerability researches
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2021-24574) , Jun 07, 2024
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2022-2515) , Jun 07, 2024
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2022-0446) , Jun 07, 2024
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2024-12769) , Mar 26, 2025
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2024-13898) , Apr 05, 2025
New vulnerability
Custom Post Type UI , Aug 05, 2025
Mmm Unity Loader (CVE-2025-8399) , Aug 05, 2025
Medical Addon for Elementor (CVE-2025-8212) , Aug 05, 2025
PressForward (CVE-2025-28987) , Aug 05, 2025
Custom Word Cloud (CVE-2025-8317) , Aug 04, 2025