Smartarget Message Bar Security & Risk Analysis
wordpress.org/plugins/smartarget-message-barDisplay a message bar on your page
Is Smartarget Message Bar Safe to Use in 2026?
Mostly Safe
Score 79/100Smartarget Message Bar is generally safe to use. 1 past CVE were resolved. Keep it updated.
The static analysis of the 'smartarget-message-bar' plugin v1.5 reveals a generally good security posture regarding code practices. There are no identified dangerous functions, all SQL queries utilize prepared statements, and output is properly escaped. The absence of file operations and external HTTP requests also contributes positively. However, a significant concern is the complete lack of any capability checks or nonce checks across all entry points. While the current static analysis reports zero unprotected entry points, this could be misleading if those entry points are intended to be protected by something other than capability or nonce checks, which are absent. The vulnerability history presents a major red flag: one known, unpatched CVE with a medium severity. This indicates a recent, exploitable flaw that has not been addressed by the developers. The common vulnerability type of Cross-site Scripting further highlights a potential for user data compromise or unauthorized actions within the WordPress environment.
Key Concerns
- Unpatched CVE present
- Missing capability checks on entry points
- Missing nonce checks on entry points
Smartarget Message Bar Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Smartarget Message Bar <= 1.4 - Authenticated (Admin+) Stored Cross-Site Scripting
Smartarget Message Bar Code Analysis
Output Escaping
Smartarget Message Bar Attack Surface
WordPress Hooks 7
Maintenance & Trust
Smartarget Message Bar Maintenance & Trust
Maintenance Signals
Community Trust
Smartarget Message Bar Alternatives
Icegram Engage – Popups, Optins, CTAs & lot more…
icegram
Create popups, opt-in forms, and call-to-action messages to capture leads and engage visitors on your WordPress site.
HashBar – Announcement, Notification Bar & Popup Campaign
hashbar-wp-notification-bar
Create Announcement Bars, Notification Bars & Popup Campaigns with countdown timers, A/B testing, smart targeting & analytics.
ITRO Popup Plugin
itro-popup
Display a popup to your WordPress site: age verification popup for adult-content site ★ multilanguage popup with qTransalte-X ★ very easy to use
Notification for WooCommerce | Boost Your Sales – Recent Sales Popup – Live Feed Sales – Upsells
woo-notification
Display recent orders as popup notifications, boosting conversion rates by showing real-time purchase, creating urgency, and showcasing new products.
Popups – Submission Messages For Contact Form 7
cf7-popups
Display contact form 7 default messages in stylish popup as user submits the form.
Smartarget Message Bar Developer Profile
21 plugins · 2K total installs
How We Detect Smartarget Message Bar
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/smartarget-message-bar/assets/css/smartarget-message-bar.css/wp-content/plugins/smartarget-message-bar/assets/js/smartarget-message-bar.jshttps://smartarget.online/wp-dashboard/package.jshttps://smartarget.online/loader.jssmartarget-message-bar/assets/css/smartarget-message-bar.css?ver=smartarget-message-bar/assets/js/smartarget-message-bar.js?ver=HTML / DOM Fingerprints
smartarget-message-bar-wrappersmartarget-message-bar-closesmartarget-message-bar-text<!-- Smartarget Message Bar --><!-- End Smartarget Message Bar -->data-smartarget-user-idSmartarget[smartarget_message_bar]