WP-Safety

Top Bar Notification & Sticky Banners Security & Risk Analysis

wordpress.org/plugins/top-bar-notification-sticky-banners

Add sticky top and bottom bars with multiple banners: text banners with optional buttons/CTAs, or responsive images.

10 active installs v1.0.1 PHP 7.4+ WP 6.7+ Updated Apr 2, 2025
notificationsticky-bannerstop-bartopbar
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Top Bar Notification & Sticky Banners Safe to Use in 2026?

Generally Safe

Score 92/100

Top Bar Notification & Sticky Banners has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The plugin 'top-bar-notification-sticky-banners' v1.0.1 exhibits a generally good security posture, with several positive indicators. The use of prepared statements for all SQL queries, a high percentage of properly escaped output, and a robust implementation of nonce and capability checks on most entry points are commendable practices. The absence of known vulnerabilities and critical taint flows further strengthens its current security standing. However, a significant concern arises from the presence of one unprotected AJAX handler, which represents a direct entry point for potential attackers. While the overall code signals and vulnerability history are positive, this single unprotected endpoint could be exploited to perform unintended actions if it handles user-supplied data without proper sanitization or authentication. The plugin's strengths lie in its diligent coding practices regarding data handling and access control, but this unprotected AJAX handler is a clear weakness that needs immediate attention.

Key Concerns

  • Unprotected AJAX handler
Vulnerabilities
None known

Top Bar Notification & Sticky Banners Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Top Bar Notification & Sticky Banners Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
7
84 escaped
Nonce Checks
7
Capability Checks
8
File Operations
1
External Requests
0
Bundled Libraries
0

Output Escaping

92% escaped91 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
save_metabox_form (traits\topbarnsb-form-helpers.php:208)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

Top Bar Notification & Sticky Banners Attack Surface

Entry Points7
Unprotected1

AJAX Handlers 5

authwp_ajax_topbarnsbtop-bar-notification-sticky-banners.php:88
noprivwp_ajax_topbarnsbtop-bar-notification-sticky-banners.php:89
authwp_ajax_topbarnsb_cpt_ordertraits\topbarnsb-cpt_banners.php:69
authwp_ajax_topbarnsb_fstraits\topbarnsb-fonts.php:25
authwp_ajax_topbarnsb_fs_flagtraits\topbarnsb-fonts.php:28

Shortcodes 2

[topbarnsb-desktop] top-bar-notification-sticky-banners.php:96
[topbarnsb-mobile] top-bar-notification-sticky-banners.php:97
WordPress Hooks 21
actioninittop-bar-notification-sticky-banners.php:71
actionwp_enqueue_scriptstop-bar-notification-sticky-banners.php:74
filteradmin_body_classtop-bar-notification-sticky-banners.php:77
actionadmin_enqueue_scriptstop-bar-notification-sticky-banners.php:78
filterbody_classtop-bar-notification-sticky-banners.php:81
actionwp_body_opentop-bar-notification-sticky-banners.php:82
actionwp_footertop-bar-notification-sticky-banners.php:85
actionadmin_noticestop-bar-notification-sticky-banners.php:92
filterplugin_action_linkstop-bar-notification-sticky-banners.php:93
actionadd_meta_boxestraits\topbarnsb-cpt_banners.php:64
actionsave_posttraits\topbarnsb-cpt_banners.php:65
actionpre_get_poststraits\topbarnsb-cpt_banners.php:68
filtertiny_mce_before_inittraits\topbarnsb-cpt_banners.php:72
actionadd_meta_boxestraits\topbarnsb-cpt_styles.php:63
actionsave_posttraits\topbarnsb-cpt_styles.php:64
actionadmin_enqueue_scriptstraits\topbarnsb-fonts.php:21
actionadmin_footertraits\topbarnsb-fonts.php:22
actionadmin_menutraits\topbarnsb-settings.php:49
actionadmin_inittraits\topbarnsb-settings.php:50
actionupdated_optiontraits\topbarnsb-settings.php:51
filterpre_update_option_topbarnsb_settingstraits\topbarnsb-settings.php:53
Maintenance & Trust

Top Bar Notification & Sticky Banners Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedApr 2, 2025
PHP min version7.4
Downloads955

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Top Bar Notification & Sticky Banners Alternatives

WPFront Notification Bar

WPFront Notification Bar

wpfront-notification-bar

A
99

Easily lets you create a bar on top or bottom to display a notification.

50K 4 CVEs
Top Bar

Top Bar

top-bar

A
98

Simply the easiest way to add a topbar to your website. Create a notification bar in no-time and show a message and a button to your visitors.

20K 3 CVEs
Easy Notification Bar

Easy Notification Bar

easy-notification-bar

A
100

A simple plugin for displaying a notice at the top of your website that can be closed by the visitor. Completely free and minimal without any upsells.

9K No CVEs
Notibar – Notification Bar for WordPress

Notibar – Notification Bar for WordPress

notibar

A
98

Customizer for sticky header, notification bar, alert, promo code, marketing campaign, top banner

8K 3 CVEs
Notification Bar, Announcement and Cookie Notice WordPress Plugin – FooBar

Notification Bar, Announcement and Cookie Notice WordPress Plugin – FooBar

foobar-notifications-lite

A
100

Create unlimited notifications, announcements, or notices for your visitors

3K No CVEs
Developer Profile

Top Bar Notification & Sticky Banners Developer Profile

wp-centrics

5 plugins · 3K total installs

97
trust score
Avg Security Score
95/100
Avg Patch Time
1 days
View full developer profile
Detection Fingerprints

How We Detect Top Bar Notification & Sticky Banners

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/top-bar-notification-sticky-banners/assets/css/topbarnsb-admin.css/wp-content/plugins/top-bar-notification-sticky-banners/assets/css/topbarnsb-frontend.css/wp-content/plugins/top-bar-notification-sticky-banners/assets/css/topbarnsb-styles.css/wp-content/plugins/top-bar-notification-sticky-banners/assets/js/topbarnsb-admin.js/wp-content/plugins/top-bar-notification-sticky-banners/assets/js/topbarnsb-frontend.js/wp-content/plugins/top-bar-notification-sticky-banners/assets/js/topbarnsb-frontend-block.js
Script Paths
/wp-content/plugins/top-bar-notification-sticky-banners/assets/js/topbarnsb-admin.js/wp-content/plugins/top-bar-notification-sticky-banners/assets/js/topbarnsb-frontend.js/wp-content/plugins/top-bar-notification-sticky-banners/assets/js/topbarnsb-frontend-block.js
Version Parameters
/wp-content/plugins/top-bar-notification-sticky-banners/assets/css/topbarnsb-admin.css?ver=/wp-content/plugins/top-bar-notification-sticky-banners/assets/css/topbarnsb-frontend.css?ver=/wp-content/plugins/top-bar-notification-sticky-banners/assets/css/topbarnsb-styles.css?ver=/wp-content/plugins/top-bar-notification-sticky-banners/assets/js/topbarnsb-admin.js?ver=/wp-content/plugins/top-bar-notification-sticky-banners/assets/js/topbarnsb-frontend.js?ver=/wp-content/plugins/top-bar-notification-sticky-banners/assets/js/topbarnsb-frontend-block.js?ver=

HTML / DOM Fingerprints

CSS Classes
topbarnsb-settingstopbarnsb-admin-menutopbarnsb-settings-fieldstopbarnsb-admin-noticestopbarnsb-banner-contenttopbarnsb-top-bartopbarnsb-bottom-bartopbarnsb-dismiss-button+1 more
HTML Comments
<!-- Top Bar Notification & Sticky Banners by wpcentrics --><!-- End Top Bar Notification & Sticky Banners -->
Data Attributes
data-topbarnsb-settingsdata-topbarnsb-iddata-topbarnsb-dismissible
JS Globals
topbarnsb_frontend_params
Shortcode Output
[topbarnsb-desktop][/topbarnsb-desktop][topbarnsb-mobile][/topbarnsb-mobile]
FAQ

Frequently Asked Questions about Top Bar Notification & Sticky Banners