[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fGtDyBQvsX3lfCGXldH74e6LrUkGQROJK7_ZiL4PLjU0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":49,"crawl_stats":38,"alternatives":52,"analysis":148,"fingerprints":220},"sticky-banner","Sticky Banner","1.5.0","Dave Meier","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiddendepth\u002F","\u003Cp>\u003Cstrong>Boost conversions and grab visitor attention with a customizable sticky banner!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Sticky Banner is the easiest way to display important announcements, promotions, or calls-to-action on your WordPress website. Whether you’re running a sale, announcing an event, or collecting email signups, this lightweight plugin helps you get noticed without slowing down your site.\u003C\u002Fp>\n\u003Ch4>Why Choose Sticky Banner?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Lightning Fast\u003C\u002Fstrong> – Optimized code that won’t slow down your website\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Super Easy Setup\u003C\u002Fstrong> – Configure your banner in minutes, no coding required\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Live Preview\u003C\u002Fstrong> – See exactly how your banner looks before publishing\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fully Customizable\u003C\u002Fstrong> – Match your brand with custom colors and messaging\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile Responsive\u003C\u002Fstrong> – Looks perfect on all devices and screen sizes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User-Friendly\u003C\u002Fstrong> – Visitors can dismiss the banner, and it won’t show again for a set number of days\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Display Controls\u003C\u002Fstrong> – Hide the banner on specific pages\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SEO Friendly\u003C\u002Fstrong> – Semantic HTML and accessibility features built-in\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Translation Ready\u003C\u002Fstrong> – Fully internationalized and ready for translation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Perfect For\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Product launches and special offers\u003C\u002Fli>\n\u003Cli>Holiday sales and promotions\u003C\u002Fli>\n\u003Cli>Event announcements\u003C\u002Fli>\n\u003Cli>Newsletter signups\u003C\u002Fli>\n\u003Cli>Cookie notices and GDPR compliance\u003C\u002Fli>\n\u003Cli>Important site-wide announcements\u003C\u002Fli>\n\u003Cli>Limited-time deals\u003C\u002Fli>\n\u003Cli>Lead generation campaigns\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Easy enable\u002Fdisable toggle\u003C\u002Fstrong> – Show or hide banner without losing your settings\u003C\u002Fli>\n\u003Cli>Position banner at \u003Cstrong>top or bottom\u003C\u002Fstrong> of your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom colors\u003C\u002Fstrong> for background, text, and buttons\u003C\u002Fli>\n\u003Cli>Add a \u003Cstrong>call-to-action button\u003C\u002Fstrong> with custom text and link\u003C\u002Fli>\n\u003Cli>Set \u003Cstrong>cookie expiration\u003C\u002Fstrong> (control how long banner stays hidden after dismissal)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hide close button\u003C\u002Fstrong> for critical announcements that must be seen\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Exclude specific pages\u003C\u002Fstrong> by ID\u003C\u002Fli>\n\u003Cli>Clean, modern design that works with any theme\u003C\u002Fli>\n\u003Cli>Fully responsive and mobile-optimized\u003C\u002Fli>\n\u003Cli>No jQuery conflicts\u003C\u002Fli>\n\u003Cli>Clean uninstall (removes all data when deleted)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Built by Hidden Depth\u003C\u002Fh4>\n\u003Cp>Sticky Banner is built and maintained by \u003Ca href=\"https:\u002F\u002Fhiddendepth.ie\u002F?utm_source=wp_plugin&utm_medium=website&utm_campaign=sticky_banner\" rel=\"nofollow ugc\">Hidden Depth\u003C\u002Fa>, a web design and development studio. If you need help with your WordPress site or have a project in mind, we’d love to hear from you.\u003C\u002Fp>\n","Create eye-catching announcement banners that stick to the top or bottom of your site. Perfect for promotions, alerts, and important updates.",600,10901,100,2,"2026-02-24T00:59:00.000Z","6.9.4","5.0","7.4",[20,21,22,23,24],"announcement","banner","cta","notification-bar","sticky-bar","https:\u002F\u002Fgithub.com\u002Fhiddendepth\u002Fhdsb-stickybanner","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsticky-banner.1.5.0.zip",99,1,0,"2024-05-10 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2024-35170","sticky-banner-authenticated-administrator-stored-cross-site-scripting","Sticky banner \u003C= 1.2.0 - Authenticated (Administrator+) Stored Cross-Site Scripting","The Sticky banner plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=1.2.0","1.3.0","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-05-15 20:23:48",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fb8ce34dc-b509-476a-8960-a0c9369a6d72?source=api-prod",6,{"slug":50,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":48,"trust_score":27,"computed_at":51},"hiddendepth","2026-04-04T01:08:33.241Z",[53,76,96,112,128],{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":63,"num_ratings":64,"last_updated":65,"tested_up_to":16,"requires_at_least":66,"requires_php":67,"tags":68,"homepage":71,"download_link":72,"security_score":73,"vuln_count":74,"unpatched_count":29,"last_vuln_date":75,"fetched_at":31},"notibar","Notibar – Notification Bar for WordPress","2.1.9","Ninja Team","https:\u002F\u002Fprofiles.wordpress.org\u002Fninjateam\u002F","\u003Cp>\u003Cstrong>Customizer for sticky header, notification bar, alert, promo code, marketing campaign, top banner\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin adds a \u003Cstrong>top notification bar\u003C\u002Fstrong> to indicate significant announcements on your website. You can set it as a sticky header that is visible when scrolling.\u003C\u002Fp>\n\u003Cp>The \u003Cstrong>Dismiss\u003C\u002Fstrong> button can be disabled, closed permanently, or toggled so that your visitors can easily find it again.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Instant live preview\u003C\u002Fstrong> mode helps you see how every setting affects the notification bar before you publish it.\u003C\u002Fp>\n\u003Cp>Notibar seamlessly integrates with your existing WordPress theme, ensuring a cohesive look and feel. It has integrated clear and compelling call-to-action buttons to drive user engagement and conversions.\u003C\u002Fp>\n\u003Ch3>⚡️ FEATURES\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>This alert banner is built to optimize appearance and drive a positive impact on your WordPress website traffic and conversions:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Designed with \u003Cstrong>clean\u003C\u002Fstrong> UI & modern style\u003C\u002Fli>\n\u003Cli>Display in \u003Cstrong>absolute\u003C\u002Fstrong> or \u003Cstrong>fixed\u003C\u002Fstrong> positioning\u003C\u002Fli>\n\u003Cli>Custom color, text, click-to-action\u003C\u002Fli>\n\u003Cli>Various notice bar \u003Cstrong>style presets\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Set text container width and alignment\u003C\u002Fli>\n\u003Cli>Actions for \u003Cstrong>Dismiss\u003C\u002Fstrong> button: disable, toggle, close for good\u003C\u002Fli>\n\u003Cli>WYSIWYG visual banner editor with \u003Cstrong>live preview\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Display on all pages\u002Fposts or specific page\u002Fpost ID\u003C\u002Fli>\n\u003Cli>Add different content for mobile devices\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🚀 TYPICAL USE CASES\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>These are good ideas on how to exploit the Notification Bar plugin:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Important announcements\u003C\u002Fli>\n\u003Cli>Technical notices\u003C\u002Fli>\n\u003Cli>Time-sensitive appeals for donation or CTA\u003C\u002Fli>\n\u003Cli>Subscription increase\u003C\u002Fli>\n\u003Cli>Terms or operational changes\u003C\u002Fli>\n\u003Cli>Privacy policy acknowledgments\u003C\u002Fli>\n\u003Cli>Maintenance messages\u003C\u002Fli>\n\u003Cli>Service outage or resource shortage\u003C\u002Fli>\n\u003Cli>Seasonal offers or promotions\u003C\u002Fli>\n\u003Cli>Driving traffic to other sites\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Notibar is ideal for you to promote upcoming events, new blog posts, product launches, or special offers with ease.\u003C\u002Fp>\n\u003Cp>Did you know? You can even capture email leads by offering incentives and integrating with your email marketing provider.\u003C\u002Fp>\n\u003Ch3>🎉 Supported Themes and Plugins\u003C\u002Fh3>\n\u003Cp>We have done extra work to ensure complete compatibility with all themes, page builders and other popular plugins.\u003C\u002Fp>\n\u003Ch3>📝 Documentation and Support\u003C\u002Fh3>\n\u003Cp>If you’re having issues, do let us know and we’ll try to help you out.\u003Cbr \u002F>\nYou can always reach us at \u003Ca href=\"http:\u002F\u002Fninjateam.org\u002Fsupport\" rel=\"nofollow ugc\">Ninja Team Support Center\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>♥️ Like this Top Bar Alert Plugin?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Rate us 5⭐ stars on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fnotibar\u002Freviews\u002F?filter=5#new-post\" rel=\"ugc\">WordPress.org\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Learn to \u003Ca href=\"https:\u002F\u002Fyaycommerce.com\u002Fcategory\u002Fwoocommerce-tutorials\u002F\" rel=\"nofollow ugc\">create successful online stores\u003C\u002Fa> with advanced built-in features.\u003C\u002Fli>\n\u003C\u002Ful>\n","Customizer for sticky header, notification bar, alert, promo code, marketing campaign, top banner",8000,129210,96,62,"2026-01-26T18:09:00.000Z","4.0","5.3.1",[20,21,23,69,70],"notifications","top-bar","https:\u002F\u002Fninjateam.org\u002Fnotibar-wordpress-notification-bar","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnotibar.2.1.9.zip",98,3,"2025-03-05 21:11:50",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":29,"num_ratings":29,"last_updated":86,"tested_up_to":87,"requires_at_least":17,"requires_php":17,"tags":88,"homepage":93,"download_link":94,"security_score":95,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"simple-alert-system","Simple Alert System","1.2.0","Chibueze Okechukwu","https:\u002F\u002Fprofiles.wordpress.org\u002Fsleekchib\u002F","\u003Cp>\u003Cstrong>Simple Alert System\u003C\u002Fstrong> is a FREE, responsive, and simplified WordPress website notification system designed to help you to easily add messages (alerts\u002Fnotifications bars) on your websites to communicate with your users.\u003C\u002Fp>\n\u003Cp>With \u003Cstrong>Simple Alert System\u003C\u002Fstrong>, you can create colorful alerts\u002Fnotifications to help you communicate important events to your users in the most pronounced ways to make sure that they do not miss anything.\u003C\u002Fp>\n\u003Ch3>Current features\u003C\u002Fh3>\n\u003Cblockquote>\n\u003Cul>\n\u003Cli>\n\u003Cp>Four standard alert colors to choose from.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Color Themes: Color themes such as flat, material, dark, light, and social color themes to give you more color trend options.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Customization tool to enable you create alerts that suit your style.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Linkability Feature: Allows you to link the alert to a desired location.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Choose how you want the link to open: On another tab, on the tab, and more.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Scheduling: You can schedule announcement to run and end at  certain dates.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Call to Action: You can add a button with a custom text to your alerts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Display Scope: The Display Scope feature enables users to exempt or include pages to the list of where they want the notification bar to show on their websites.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Responsive: Simple Alert System adapts to the screen sizes of your users’ devices.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Preview: A live preview feature to enable users to see a replica of the alert within the settings window.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fblockquote>\n\u003Ch3>Coming Soon\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>More great features are in the works\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External Libraries\u003C\u002Fh3>\n\u003Cp>The external libraries will be updated as often as necessary\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Google Material Icons\u003C\u002Fli>\n\u003Cli>Google Web Fonts\u003C\u002Fli>\n\u003Cli>jQuery U.I\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Notice\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Simple Alert System\u003C\u002Fstrong> uses PHP cookies to facilitate users’ choices on the visibility of the alert. It does not collect personal or website information; When users close the alert, it initiates a cookie that reminds the browser that the alert shouldn’t show.\u003C\u002Fp>\n","Simple Alert System is a FREE responsive and simplified WordPress website notification system..",50,8704,"2024-05-29T10:33:00.000Z","6.5.8",[89,90,23,91,92],"alert","announcement-banner","site-notification","website-alert","https:\u002F\u002Fseopyramid.io\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-alert-system.1.2.0.zip",92,{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":29,"downloaded":104,"rating":29,"num_ratings":29,"last_updated":105,"tested_up_to":16,"requires_at_least":106,"requires_php":18,"tags":107,"homepage":110,"download_link":111,"security_score":13,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"convboost-sticky-notification-bar","ConvBoost Sticky Notification Bar","0.0.9","numeriweb","https:\u002F\u002Fprofiles.wordpress.org\u002Fnumeriweb\u002F","\u003Cp>ConvBoost Sticky Notification Bar helps you add a clean \u003Cstrong>sticky bar\u003C\u002Fstrong> to your website (top or bottom of the screen) to highlight promotions, announcements, shipping updates, or any important message.\u003C\u002Fp>\n\u003Cp>It’s built to stay \u003Cstrong>simple\u003C\u002Fstrong>, \u003Cstrong>clear\u003C\u002Fstrong>, and \u003Cstrong>lightweight\u003C\u002Fstrong>: configure your bar in minutes, keep the output minimal, and avoid over-complicated builders. When you do want to fine-tune design, the \u003Cstrong>live admin preview\u003C\u002Fstrong> helps you iterate faster.\u003C\u002Fp>\n\u003Ch3>Why users choose ConvBoost\u003C\u002Fh3>\n\u003Cp>Most sticky bar plugins force a slow loop: edit \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> save \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> open your site \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> refresh \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> repeat.\u003Cbr \u002F>\nConvBoost focuses on a faster, simpler workflow:\u003Cbr \u002F>\n* Clear, beginner-friendly settings\u003Cbr \u002F>\n* Lightweight output and minimal overhead\u003Cbr \u002F>\n* Live preview to speed up styling (without guesswork)\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Lightweight and quick to configure\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Live preview in the admin\u003C\u002Fstrong> (see changes instantly while you edit)\u003C\u002Fli>\n\u003Cli>Show the bar on \u003Cstrong>desktop\u003C\u002Fstrong>, \u003Cstrong>mobile\u003C\u002Fstrong>, or both\u003C\u002Fli>\n\u003Cli>Place the bar at the \u003Cstrong>top or bottom\u003C\u002Fstrong> of your pages\u003C\u002Fli>\n\u003Cli>Optional: \u003Cstrong>push the page down\u003C\u002Fstrong> when using a top bar (so it doesn’t cover your header)\u003C\u002Fli>\n\u003Cli>Choose the inner width: \u003Cstrong>full width\u003C\u002Fstrong> or \u003Cstrong>boxed\u003C\u002Fstrong> (set a custom width like 600px)\u003C\u002Fli>\n\u003Cli>Optional \u003Cstrong>two-line layout on mobile\u003C\u002Fstrong> (message + button can wrap neatly)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Scheduling\u003C\u002Fstrong> (start\u002Fend date & time, minute precision)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content exclusions\u003C\u002Fstrong> (hide on areas like homepage, archives, search, and 404s)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Message\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add your message easily\u003C\u002Fli>\n\u003Cli>Standard \u003Cstrong>Links are allowed\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>No custom HTML (keeps it simple and safer)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Design (no coding or CSS needed)\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Choose background and text colors\u003C\u002Fli>\n\u003Cli>Set link color\u003C\u002Fli>\n\u003Cli>Adjust font size\u003C\u002Fli>\n\u003Cli>Optional shadow and border\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Call-to-action button (optional)\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add a button (example: “Shop now”, “Get the offer”, “Contact us”)\u003C\u002Fli>\n\u003Cli>Set the button link\u003C\u002Fli>\n\u003Cli>Option to open in a new tab\u003C\u002Fli>\n\u003Cli>Choose a button shape (Square \u002F Pill \u002F Rounded \u002F Boxed)\u003C\u002Fli>\n\u003Cli>Adjust button spacing and colors\u003C\u002Fli>\n\u003Cli>Optional button shadow\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Close button (optional)\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Let visitors dismiss the bar\u003C\u002Fli>\n\u003Cli>Dismiss for the \u003Cstrong>current visit\u003C\u002Fstrong> (session) or for \u003Cstrong>X days\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Choose close icon position (left or right)\u003C\u002Fli>\n\u003Cli>Adjust close icon size and color\u003C\u002Fli>\n\u003C\u002Ful>\n","Lightweight sticky top\u002Fbottom bar for promos & announcements. CTA, scheduling, exclusions, and live admin preview.",118,"2026-02-10T12:08:00.000Z","6.0",[108,109,23,24,70],"announcement-bar","bottom-bar","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fconvboost-sticky-notification-bar.0.0.9.zip",{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":29,"downloaded":120,"rating":29,"num_ratings":29,"last_updated":121,"tested_up_to":122,"requires_at_least":17,"requires_php":123,"tags":124,"homepage":110,"download_link":127,"security_score":13,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"lightweight-high-performance-sticky-bar","Lightweight High Performance Sticky Bar","1.5.3","alexgodlewski","https:\u002F\u002Fprofiles.wordpress.org\u002Falexgodlewski\u002F","\u003Cp>The Lightweight High Performance Sticky Bar is perfect for announcements, promotions, or important messages that need visibility without disrupting the user experience. It adds a customizable sticky bar to the top of your website with options for a countdown timer.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Smooth Animations\u003C\u002Fstrong>: Clean transitions when showing and hiding the bar\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Text\u003C\u002Fstrong>: Set your own message to display\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Color Picker\u003C\u002Fstrong>: Choose any background color with the built-in WordPress color picker\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cookie Integration\u003C\u002Fstrong>: Bar stays hidden for visitors who close it\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Configurable Duration\u003C\u002Fstrong>: Set how many hours the bar stays hidden after being closed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Bar Compatible\u003C\u002Fstrong>: Automatically adjusts position when WordPress admin bar is present\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content-Friendly\u003C\u002Fstrong>: Adds padding to avoid covering your website content\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight\u003C\u002Fstrong>: Minimal impact on page load times and performance\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile-Friendly\u003C\u002Fstrong>: Fully responsive design that works on all devices\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Dependencies\u003C\u002Fstrong>: Doesn’t require any external libraries beyond jQuery (included with WordPress)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Countdown Timer\u003C\u002Fstrong>: Display a countdown to a specific date and time\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cache-Compatible\u003C\u002Fstrong>: Works with page caching plugins\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Countdown\u003C\u002Fstrong>: Position, colors, labels, and end actions\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Technical Details\u003C\u002Fh3>\n\u003Cp>The sticky bar appears at the top of your website as the first element in the header. It includes:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Smart Positioning\u003C\u002Fstrong>: Detects and adjusts for the WordPress admin bar when logged in\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Body Padding\u003C\u002Fstrong>: Automatically adds padding to prevent content from being hidden\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Responsive Layout\u003C\u002Fstrong>: Adapts to all screen sizes from mobile to desktop\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance Optimized\u003C\u002Fstrong>: JavaScript and CSS are minified and only loaded when needed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cookie-Based Memory\u003C\u002Fstrong>: Respects user preferences by remembering when they’ve dismissed the bar\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Countdown Feature\u003C\u002Fstrong>: Display days, hours, minutes, and seconds remaining until a target date\u003C\u002Fli>\n\u003Cli>\u003Cstrong>AJAX Updates\u003C\u002Fstrong>: Ensures countdown accuracy even with cached pages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Configuration Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Bar Text\u003C\u002Fstrong>: The message displayed in the sticky bar\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Background Color\u003C\u002Fstrong>: Color picker for the bar background\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hide Duration\u003C\u002Fstrong>: Hours the bar stays hidden after closing\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enable Bar\u003C\u002Fstrong>: Toggle to activate\u002Fdeactivate the bar\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enable Countdown\u003C\u002Fstrong>: Toggle to enable the countdown timer\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Target Date\u003C\u002Fstrong>: The date and time that the countdown targets\u003C\u002Fli>\n\u003Cli>\u003Cstrong>After Countdown Ends\u003C\u002Fstrong>: What happens when countdown reaches zero (Show Zeros, Remove Countdown, or Remove Bar)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Countdown Position\u003C\u002Fstrong>: Where to display the countdown relative to text\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Numbers Background\u003C\u002Fstrong>: Background color for countdown digits\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Numbers Font Color\u003C\u002Fstrong>: Text color for countdown digits\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Show Labels\u003C\u002Fstrong>: Toggle to show\u002Fhide time unit labels (Days, Hours, etc.)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Labels Position\u003C\u002Fstrong>: Display labels above or below the numbers\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Labels\u003C\u002Fstrong>: Customize the text for each time unit label\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 5.0 or higher\u003C\u002Fli>\n\u003Cli>PHP 7.4 or higher\u003C\u002Fli>\n\u003Cli>JavaScript enabled in the browser\u003C\u002Fli>\n\u003Cli>Cookies enabled for remembering user preferences\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 5.0 or higher\u003C\u002Fli>\n\u003Cli>PHP 7.4 or higher\u003C\u002Fli>\n\u003Cli>JavaScript enabled in the browser\u003C\u002Fli>\n\u003Cli>Cookies enabled for remembering user preferences\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by Alex Godlewski, \u003Ca href=\"https:\u002F\u002Fhyroes.com\" rel=\"nofollow ugc\">Hyroes.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>This plugin sets a cookie (HyroesStickyBarClosed) in the visitor’s browser when they close the sticky bar. This cookie only stores a simple “closed” status and does not collect any personal information or track users.\u003C\u002Fp>\n\u003Cp>The cookie expires after the configured number of hours (default: 24 hours). No data is sent to external servers except for the AJAX requests used to update the countdown timer, which do not contain any personal information.\u003C\u002Fp>\n","Add a customizable sticky notification bar with countdown functionality to your website with minimal performance impact.",264,"2025-06-07T14:03:00.000Z","6.8.5","7.0",[108,125,23,126,24],"countdown-timer","promotion-bar","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flightweight-high-performance-sticky-bar.zip",{"slug":129,"name":130,"version":131,"author":132,"author_profile":133,"description":134,"short_description":135,"active_installs":136,"downloaded":137,"rating":73,"num_ratings":138,"last_updated":139,"tested_up_to":16,"requires_at_least":140,"requires_php":110,"tags":141,"homepage":145,"download_link":146,"security_score":95,"vuln_count":48,"unpatched_count":29,"last_vuln_date":147,"fetched_at":31},"mystickymenu","My Sticky Bar – Floating Notification Bar & Sticky Header (formerly myStickymenu)","2.8.7","Premio","https:\u002F\u002Fprofiles.wordpress.org\u002Fpremio\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fpremio.io\u002Fhelp\u002Fmystickymenu\u002F?utm_source=wordpressorg\" title=\"Support\" rel=\"nofollow ugc\">Support\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.premio.io\u002Fmystickymenu\u002F?utm_source=wordpressorg\" title=\"Premio.io demo site\" rel=\"nofollow ugc\">Demo\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fpremio.io\u002F?utm_source=wordpressorg\" title=\"WordPress plugins\" rel=\"nofollow ugc\">Recommended Plugins\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fpremio.io\u002Fdownloads\u002Fmystickymenu\u002F?utm_source=wordpressorg\" title=\"My Sticky Bar Pro\" rel=\"nofollow ugc\">\u003Cstrong>Upgrade to Pro ⭐\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Use My Sticky Bar (formerly myStickymenu) to create a beautiful notification bar for your website. You can also use this notification bar & sticky menu plugin to make your menu or header sticky on top of page, after desired number of pixels when scrolled. You can use it also to create a Welcome bar for announcements, promotion and more. This lightweight plugin will help your visitors navigate easily and reach to the navigation menu without wasting time. Install My Sticky Bar and improve your website’s user experience! If you want to change the CSS style, disable on scroll down or disable on specific pages. check out the \u003Ca href=\"https:\u002F\u002Fpremio.io\u002Fdownloads\u002Fmystickymenu\u002F\" title=\"My Sticky Bar pro plans\" rel=\"nofollow ugc\">Pro version\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, My Sticky Bar (formerly myStickymenu) should make your menu sticky right away if you turn the sticky menu feature on – which means your menu should become sticky right out of the box. Sticky menu is designed to use element class “.navbar” as “Sticky Class”. That value should be modified in plugin settings for different themes to make it work. Sticky Class is actually nothing more than an element class (or id) of the element that should become sticky.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fl9aRnPVuCVY?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Cstrong>📢 Welcome Notification Bar:\u003C\u002Fstrong> Use this powerful feature to create a beautiful floating sticky notification bar. Just turn the notification bar on, set up your announcement text and button, and voilà, your top notification bar is ready!\u003C\u002Fp>\n\u003Ch4>💪 BENEFITS\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Improve user experience by letting your visitors access the navigation menu and navigate to the pages they want when they want to.\u003C\u002Fli>\n\u003Cli>Make your website look more modern with the sticky menu on desktop and mobile.\u003C\u002Fli>\n\u003Cli>Increase number of page views and visitors’ time on your website\u003C\u002Fli>\n\u003Cli>Create your own floating Welcome Bar and let your visitors know about your latest deals, announcements, or any other important information\u003C\u002Fli>\n\u003Cli>The My Sticky Bar dashboard makes it easy for you to manage your top bars and sticky menus in one place!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The sticky header function is localized (multi-language support) and responsive (as far as your theme is). Also, there is the possibility to add custom CSS code which makes this plugin very flexible, customizable, and user-friendly. You can also use the notification bar in any language.\u003C\u002Fp>\n\u003Cp>My Sticky Bar plugin is originally designed for Twenty Thirteen template but should work on any theme, like OceanWP, Nirvana Template, Twenty Sixteen, Twenty Ten, Twenty Eleven, Twenty Twenty-Five, Twenty Twenty-Four, Twenty Twenty-Three, Max Magazine, Graduate, Lawyer theme, Spacious, Suits, and more.\u003C\u002Fp>\n\u003Cp>My Sticky Bar is compatible with Elementor website builder, Divi, WPBakery, Gutenberg, Visual composer, Beaver, and other WordPress website builders.\u003C\u002Fp>\n\u003Ch4>🚀 WITH WELCOME BAR FEATURES YOU CAN:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Display your floating bar at the top position\u003C\u002Fli>\n\u003Cli>When the user clicks on the welcome bar button you can close the bar, redirect to another URL, or launch a \u003Ca href=\"https:\u002F\u002Fwww.poptin.com\u002F?utm_source=msm\" title=\"Poptin pop up\" rel=\"nofollow ugc\">Poptin pop up\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>New! Contact Form 📝 – Include a contact form in your notification bar to collect either name and email or name and phone number. This feature can improve lead generation on your website. You’ll be able to gather your users’ details using a contact form and reach them directly.\u003C\u002Fli>\n\u003Cli>Change the background and button colors for your hello bar\u003C\u002Fli>\n\u003Cli>Change display frequency after submission – show the announcement bar on every page, once a visit, or don’t show the announcement bar after it’s submitted\u003C\u002Fli>\n\u003Cli>Add an attention effect to your button and increase conversion and CTR\u003C\u002Fli>\n\u003Cli>New! Add any custom HTML to your notification bar including strong, underline, italic, and much more. Use custom HTML to create a beautiful notification bar\u003C\u002Fli>\n\u003Cli>Change font size and font family\u003C\u002Fli>\n\u003Cli>Set your own text and call-to-action button text\u003C\u002Fli>\n\u003Cli>Show the closing X on desktop\u002Fmobile\u003C\u002Fli>\n\u003Cli>Show the call-to-action button in your top notification bar on desktop\u002Fmobile\u003C\u002Fli>\n\u003Cli>Redirect your visitors to another URL on-click\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>📌 WITH MY STICKY BAR YOU CAN:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Show sticky header when scrolling the page\u003C\u002Fli>\n\u003Cli>Fade or slide effect\u003C\u002Fli>\n\u003Cli>Disable at a small screen\u003C\u002Fli>\n\u003Cli>Choose when to make visible on scroll\u003C\u002Fli>\n\u003Cli>Change the font color when the menu is sticky\u003C\u002Fli>\n\u003Cli>Change the background color\u003C\u002Fli>\n\u003Cli>Change the opacity\u003C\u002Fli>\n\u003Cli>Change the sticky transition time\u003C\u002Fli>\n\u003Cli>Define the z-index of the sticky header\u003C\u002Fli>\n\u003Cli>Set an entrance effect for your sticky menu\u003C\u002Fli>\n\u003Cli>Write your notification bar announcements in different languages – we support both LTR and RTL formats\u003C\u002Fli>\n\u003Cli>New and improved dashboard – The new My Sticky Bar dashboard will help you manage your notification bars, top bars, and sticky menus better.\u003C\u002Fli>\n\u003Cli>New! Disable the sticky menu – You now have the option to disable sticky menu features if you want to use only top bars or welcome bars\u003C\u002Fli>\n\u003Cli>Many of our users use the welcome bar to announce about their Coronavirus COVID-19 updates. You can use the notification bar as a Corona Virus – COVID-19 banner to make sure your visitors are up-to-date.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>👌 Welcome Bar Pro Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Multi Welcome Bar – Create a separate notification bar for different pages based on page targeting rules (E.g. separate notification bar for different languages, different product categories, and much more)\u003C\u002Fli>\n\u003Cli>New! Countdown timer ⏳ –  Add a countdown timer in your notification bar for that much-needed sense of urgency. This new countdown timer notifications bar feature can really increase your conversion rate because it creates a sense of scarcity and urgency on your promotions.\u003C\u002Fli>\n\u003Cli>New! Sliding texts – Display multiple lines of content in your notification bar that can scroll automatically in your desired direction. You can use it to promote different products, as a news ticker, or any other changing content in your notification bar* New! Send contact form leads via email – you can get email notifications when a visitor fills out your notification bar contact form\u003C\u002Fli>\n\u003Cli>New! Add a discount coupon element 🎫 – This feature lets you add a discount code coupon to your notification bar. Reduce cart abandonment and improve sales by offering your users a coupon discount code when they need it\u003C\u002Fli>\n\u003Cli>New! Country targeting – Show or hide your notification bar for specific countries. Create unique notification bars for different countries and tailor your messaging to specific audiences\u003C\u002Fli>\n\u003Cli>Display your floating bar at the bottom position\u003C\u002Fli>\n\u003Cli>Change the height of the sticky notification bar\u003C\u002Fli>\n\u003Cli>Open redirect link in a new tab\u003C\u002Fli>\n\u003Cli>Show your notification bar just on mobile or desktop\u003C\u002Fli>\n\u003Cli>Show your notification bar on a scroll or after a few seconds\u003C\u002Fli>\n\u003Cli>Set an expiry date for your welcome bar, including settings a time zone\u003C\u002Fli>\n\u003Cli>Display your floating notification bar on specific pages\u003C\u002Fli>\n\u003Cli>You can set a thank you screen which appears after the button is clicked (can be used for coupons or any other message you want to show your visitors after they click on the button)\u003C\u002Fli>\n\u003Cli>Add a rel Attribute to your notification bar button\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>But wait, there’s more 😉\u003C\u002Fp>\n\u003Ch4>🔥 WHAT DO YOU GET IN THE PRO PLAN\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable floating menu on Desktop\u002FMobile\u003C\u002Fli>\n\u003Cli>Disable floating menu on scroll down\u003C\u002Fli>\n\u003Cli>Add CSS style to the floating header\u003C\u002Fli>\n\u003Cli>Disable\u002Fenable floating header on specific pages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpremio.io\u002Fdownloads\u002Fmystickymenu\u002F\" title=\"My Sticky Bar pro plans\" rel=\"nofollow ugc\">\u003Cstrong>>>> See Pro plans here 🚀\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Live Demo\u003C\u002Fh4>\n\u003Cp>A live demo for My Sticky Bar plugin and notification bar is available at \u003Ca href=\"https:\u002F\u002Fdemo.premio.io\u002Fmystickymenu\u002F?utm_source=wordpressorg\" title=\"Premio.io demo site\" rel=\"nofollow ugc\">Premio’s demo site\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>🗓️ Countdown timer\u003C\u002Fh4>\n\u003Cp>Do you have a limited-period offer? Want to create a sense of urgency to boost leads in your notification bar? Add a countdown to your notification bar. A highly customizable feature that can be paired with your website’s theme and colors.\u003C\u002Fp>\n\u003Cp>Apart from setting a global date and time-based countdown, you can also start an individual countdown for every unique visitor from when they arrive on your website.\u003C\u002Fp>\n\u003Ch4>🔒 My Sticky Bar is GDPR compliant\u003C\u002Fh4>\n\u003Cp>We don’t store any local data about your visitors. Any time your menu or notification bar appears on your site, the plugin will not store any local data about it.\u003Cbr \u002F>\n\u003Cstrong>Pro tip:\u003C\u002Fstrong> You can use the plugin’s notification bar to let your website’s visitors know about your cookie policy 🙂\u003C\u002Fp>\n\u003Ch4>📧 Grow your email list using the notification bar contact form\u003C\u002Fh4>\n\u003Cp>Collect valuable visitor information from your website, by giving them access to a contact form at any time, anywhere. The notification bar contact form helps you get leads into your local database. Create effective marketing campaigns and to contact your website visitors. Using the contact form in combination with features like a countdown, coupons, and other powerful notification bar options gives you a powerful way to convince users to share their lead information with you.\u003C\u002Fp>\n\u003Cp>When a visitor fills in their details (email, phone, name, etc.) on the welcome bar, if you’re using the Pro version you can get the lead sent to your email.\u003C\u002Fp>\n\u003Cp>This helps you get notified as soon as a visitor shows interest in your website. It is an extremely useful tool in your arsenal to convert leads quickly as soon as they enquire about your services or products.\u003C\u002Fp>\n\u003Ch4>🏷️ Show and Copy Coupons & Discounts Codes\u003C\u002Fh4>\n\u003Cp>Get your visitors to use your coupons in the least amount of time and clicks without hassle! Your visitors can simply copy the coupon or discount code from the welcome bar with just one click. This feature also displays a message to the user that the coupon has been copied to their clipboard, making their journey on your website extremely pleasant.\u003C\u002Fp>\n\u003Ch4>🎯 Page targeting & triggers\u003C\u002Fh4>\n\u003Cp>With the Pro version, choose to show or not show the widget on specific pages using various targeting rules. With our smart rules, you don’t have to spend hours defining all the pages for targeting; simply define what a page URL should contain and cover targeting for all relevant pages. A very powerful feature that helps you personalize your website’s experience for different types of visitors.\u003C\u002Fp>\n\u003Cp>Use triggers to set events at which your widget pops out. Do you think your visitor might be potential lead if they scroll through 75% of your website? Show them a coupon from the welcome bar by triggering it.\u003C\u002Fp>\n\u003Ch4>🔝 Sticky Menu\u003C\u002Fh4>\n\u003Cp>Easily adds a sticky menu\u002Fheader to any theme using My Sticky Bar. Make your website look modern and increase accessibility by adding a menu that sticks even when the user scrolls.\u003C\u002Fp>\n\u003Ch4>🤗 Testimonials\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>“Works great.\u003Cbr \u002F>\n  One of the key elements that I consider when choosing a theme is the sticky menu option. If the theme doesn’t have it normally I don’t use it. But now that’s not a problem for me anymore.”\u003C\u002Fp>\n\u003Cp>“This plugin rocks!\u003Cbr \u002F>\n  This plugin does exactly what it should. It is simple but powerful. I would suggest to anyone who wants to make their navigation menu sticky! I especially love the hide header on scroll down, show on scroll up feature that is built it. Great work!\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Create a welcome notification bar for your website. Also, My Sticky Bar plugin can make your menu or header sticky to the top when scrolled 📌",100000,3889571,1191,"2026-03-11T06:52:00.000Z","3.5.1",[142,23,24,143,144],"floating-bar","sticky-header","sticky-menu","https:\u002F\u002Fpremio.io\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmystickymenu.2.8.7.zip","2026-03-11 13:35:56",{"attackSurface":149,"codeSignals":190,"taintFlows":206,"riskAssessment":207,"analyzedAt":219},{"hooks":150,"ajaxHandlers":186,"restRoutes":187,"shortcodes":188,"cronEvents":189,"entryPointCount":29,"unprotectedCount":29},[151,157,160,164,170,175,178,183],{"type":152,"name":153,"callback":154,"file":155,"line":156},"action","plugins_loaded","hdsb_load_textdomain","hdsb-stickybanner.php",35,{"type":152,"name":153,"callback":158,"file":155,"line":159},"hdsb_stickybanner_upgrade_check",48,{"type":152,"name":161,"callback":162,"file":155,"line":163},"wp_footer","hdsb_stickybanner_output",76,{"type":152,"name":165,"callback":166,"priority":167,"file":168,"line":169},"wp_enqueue_scripts","hdsb_stickybanner_custom_colour",20,"inc\\admin\\colours.php",8,{"type":152,"name":171,"callback":172,"file":173,"line":174},"admin_menu","hdsb_stickybanner_menu","inc\\admin\\settings.php",7,{"type":152,"name":176,"callback":177,"file":173,"line":167},"admin_init","hdsb_stickybanner_settings",{"type":152,"name":179,"callback":180,"file":181,"line":182},"admin_enqueue_scripts","hdsb_stickybanner_enqueue_admin_scripts","inc\\enqueues.php",10,{"type":152,"name":165,"callback":184,"file":181,"line":185},"hdsb_stickybanner_scripts",37,[],[],[],[],{"dangerousFunctions":191,"sqlUsage":192,"outputEscaping":198,"fileOperations":29,"externalRequests":29,"nonceChecks":29,"capabilityChecks":28,"bundledLibraries":205},[],{"prepared":29,"raw":28,"locations":193},[194],{"file":195,"line":196,"context":197},"uninstall.php",47,"$wpdb->get_col() with variable interpolation",{"escaped":156,"rawEcho":14,"locations":199},[200,203],{"file":173,"line":201,"context":202},284,"raw output",{"file":173,"line":204,"context":202},285,[],[],{"summary":208,"deductions":209},"The \"sticky-banner\" plugin v1.5.0 shows a mixed security posture. On one hand, the static analysis reveals a very limited attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events. The code also demonstrates good practices with a high percentage of properly escaped output and no file operations or external HTTP requests. However, there are notable concerns regarding SQL query handling and the lack of comprehensive security checks.\n\nThe static analysis indicates one SQL query that is not using prepared statements, which is a significant risk for SQL injection vulnerabilities, especially if user input is involved. While taint analysis found no issues, this is based on zero flows analyzed, meaning the analysis might not have been exhaustive enough to uncover potential vulnerabilities. The plugin also lacks nonce checks on its entry points, which, although currently zero, leaves it vulnerable should any be introduced without proper security measures. The presence of one medium-severity Cross-Site Scripting (XSS) vulnerability historically, even if patched, suggests that input sanitization and output escaping in specific contexts might require more rigorous testing.\n\nOverall, the plugin has strengths in its limited attack surface and output escaping. However, the unescaped SQL query and the historical XSS vulnerability, coupled with a lack of nonce checks, warrant caution. The limited taint analysis coverage is also a point of concern, as it might not be providing a complete picture of potential risks.",[210,212,214,217],{"reason":211,"points":174},"Raw SQL queries without prepared statements",{"reason":213,"points":182},"Historical medium severity XSS vulnerability",{"reason":215,"points":216},"Lack of nonce checks",5,{"reason":218,"points":216},"Limited taint flow analysis coverage","2026-03-16T19:28:20.481Z",{"wat":221,"direct":232},{"assetPaths":222,"generatorPatterns":226,"scriptPaths":227,"versionParams":228},[223,224,225],"\u002Fwp-content\u002Fplugins\u002Fsticky-banner\u002Fassets\u002Fcss\u002Fstickybanner-admin.css","\u002Fwp-content\u002Fplugins\u002Fsticky-banner\u002Fassets\u002Fcss\u002Fstickybanner.css","\u002Fwp-content\u002Fplugins\u002Fsticky-banner\u002Fassets\u002Fjs\u002Fstickybanner.min.js",[],[225],[229,230,231],"sticky-banner\u002Fassets\u002Fcss\u002Fstickybanner-admin.css?ver=","sticky-banner\u002Fassets\u002Fcss\u002Fstickybanner.css?ver=","sticky-banner\u002Fassets\u002Fjs\u002Fstickybanner.min.js?ver=",{"cssClasses":233,"htmlComments":237,"htmlAttributes":238,"restEndpoints":239,"jsGlobals":240,"shortcodeOutput":241},[234,235,236],"hdsb-stickybanner","hdsb-stickybanner-text","hdsb-stickybanner-btn",[],[],[],[],[]]