cleantalk
Vulnerabilities and Security Researches

WP App Bar, CVE-2025-68891

CVE, Research URL

CVE-2025-68891

Home page URL

Security reports for WP App Bar

Application

WP App Bar

Published on
Jan 08, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ryan Sutana WP App Bar wp-app-bar allows Reflected XSS.This issue affects WP App Bar: from n/a through <= 1.5.
Affected versions
max 1.5.
Status
vulnerable
Previous vulnerability researches
WP App Bar (CVE-2026-1074) , Apr 16, 2026
WP App Bar (CVE-2025-68891) , Jan 28, 2026
New vulnerability
Google Calendar List View (CVE-2026-2396) , Apr 16, 2026
CM Email Registration Blacklist and Whitelist (CVE-2026-0691) , Apr 16, 2026
AMP Enhancer &#8211; Compatibility Layer for Official AMP Plugin (CVE-2026-2027) , Apr 16, 2026
WaveSurfer-WP (CVE-2026-1909) , Apr 16, 2026
xmlrpc attacks blocker (CVE-2026-2502) , Apr 16, 2026