WP-Safety

Top Bar Announcements and News Security & Risk Analysis

wordpress.org/plugins/announcements-bar

Displays a colored top bar in your website for news, promotions and announcements. Customize text and colors!

0 active installs v1.0.211 PHP + WP 4.0+ Updated Jun 26, 2020
announcementsbottom-barofferspromotions-bartop-bar
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Top Bar Announcements and News Safe to Use in 2026?

Generally Safe

Score 85/100

Top Bar Announcements and News has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The "announcements-bar" plugin version 1.0.211 exhibits a mixed security posture. On the positive side, it demonstrates good practices by not containing any recorded critical or high-severity vulnerabilities in its history, and it correctly utilizes prepared statements for all SQL queries and includes nonce checks on its AJAX handler. The absence of dangerous functions, file operations, and external HTTP requests further contributes to a generally secure foundation. However, a significant concern arises from the complete lack of output escaping. With 25 total outputs and 0% properly escaped, this presents a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. The plugin also lacks capability checks on its sole AJAX entry point, meaning any authenticated user could potentially interact with it without proper authorization, although the attack surface is currently small and the vulnerability history is clean.

Key Concerns

  • 0% of outputs properly escaped
  • No capability checks on AJAX handler
Vulnerabilities
None known

Top Bar Announcements and News Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Top Bar Announcements and News Release Timeline

No version history available.
Code Analysis
Analyzed Apr 16, 2026

Top Bar Announcements and News Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
25
0 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

0% escaped25 total outputs
Attack Surface

Top Bar Announcements and News Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_wico_annbar_wicore_business_ajax_receiverwicore/business.php:8
WordPress Hooks 5
actionwp_headfunctions/functions.php:214
actionadmin_enqueue_scriptsfunctions/startup.php:12
actionwp_enqueue_scriptsfunctions/startup.php:20
actioninitwico-announcements-bar.php:37
actionadmin_menuwicore/business.php:289
Maintenance & Trust

Top Bar Announcements and News Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19
Last updatedJun 26, 2020
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Top Bar Announcements and News Alternatives

WPFront Notification Bar

WPFront Notification Bar

wpfront-notification-bar

A
99

Easily lets you create a bar on top or bottom to display a notification.

50K 4 CVEs
Dima Take Action

Dima Take Action

dima-take-action

C
64

Easily lets you add a Top/Buttom Banner to display a notification and promotion.

300 1 unpatched
Yoo Bar – Notification, Announcement & Promo Bar for WordPress

Yoo Bar – Notification, Announcement & Promo Bar for WordPress

yoo-bar

A
99

adds a clean notification bar at the top or bottom of your website.

100 1 CVE
Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme

Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme

gp-notification-bar

B
71

Easily it allows you to create a bar on top or bottom to display a notification or promotion

40 1 unpatched
Simple Site Notice – Top Bar & Bottom Bar

Simple Site Notice – Top Bar & Bottom Bar

simple-site-notice

A
92

Display a customizable notification bar at the top or bottom of your site. Perfect for notices, promotions, or announcements.

10 No CVEs
Developer Profile

Top Bar Announcements and News Developer Profile

wisercoding

2 plugins · 0 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Top Bar Announcements and News

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/announcements-bar/client/plugin.css/wp-content/plugins/announcements-bar/wicore/clientresources/reset.css/wp-content/plugins/announcements-bar/wicore/clientresources/toastify.min.css/wp-content/plugins/announcements-bar/wicore/clientresources/fontawesome.min.css/wp-content/plugins/announcements-bar/wicore/clientresources/fontawesome.solid.min.css/wp-content/plugins/announcements-bar/wicore/clientresources/fontawesome.regular.min.css/wp-content/plugins/announcements-bar/wicore/clientresources/wico-plugin.css/wp-content/plugins/announcements-bar/client/plugin.css
Script Paths
/wp-content/plugins/announcements-bar/wicore/script/common.js/wp-content/plugins/announcements-bar/client/plugin.js/wp-content/plugins/announcements-bar/wicore/clientresources/toastify.min.js
Version Parameters
announcements-bar/client/plugin.css?ver=announcements-bar/wicore/clientresources/reset.css?ver=announcements-bar/wicore/clientresources/toastify.min.css?ver=announcements-bar/wicore/clientresources/fontawesome.min.css?ver=announcements-bar/wicore/clientresources/fontawesome.solid.min.css?ver=announcements-bar/wicore/clientresources/fontawesome.regular.min.css?ver=announcements-bar/wicore/clientresources/wico-plugin.css?ver=announcements-bar/client/plugin.css?ver=announcements-bar/wicore/script/common.js?ver=announcements-bar/client/plugin.js?ver=announcements-bar/wicore/clientresources/toastify.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
wico-blockui
Data Attributes
data-wico-ann-bar-id
JS Globals
wico_annbar_vars
FAQ

Frequently Asked Questions about Top Bar Announcements and News