cleantalk
Vulnerabilities and Security Researches

Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website, CVE-2024-12769

CVE, Research URL

CVE-2024-12769

Home page URL

Security reports for Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website

Application

Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website

Published on
Mar 25, 2025
Research Description
The Simple Banner WordPress plugin before 3.0.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
Affected versions
Min -, max 3.0.4.
Status
vulnerable
Previous vulnerability researches
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2021-24574) , Jun 07, 2024
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2022-2515) , Jun 07, 2024
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2022-0446) , Jun 07, 2024
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2024-12769) , Mar 26, 2025
Simple Banner – An easy to use Banner/Bar/Notification/Announcement for the top or bottom of your website (CVE-2024-13898) , Apr 05, 2025
New vulnerability
Custom Post Type UI , Aug 05, 2025
Mmm Unity Loader (CVE-2025-8399) , Aug 05, 2025
Medical Addon for Elementor (CVE-2025-8212) , Aug 05, 2025
PressForward (CVE-2025-28987) , Aug 05, 2025
Custom Word Cloud (CVE-2025-8317) , Aug 04, 2025