[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fqSo-PD2BtmM7Egt39_drTnuz2NMhzrrCqcKG5fnZKv8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":73,"crawl_stats":37,"alternatives":80,"analysis":172,"fingerprints":356},"top-bar","Top Bar","3.0.6","WP Darko","https:\u002F\u002Fprofiles.wordpress.org\u002Fspwebguy\u002F","\u003Cp>Simply the easiest way to add a topbar to your website. This plugin adds a simple and clean notification bar at the top of your website, allowing you to display a nice message to your visitors as well as a custom link. What you see is what you get, and it’s totally free.\u003C\u002Fp>\n\u003Ch4>No limitation for the Free version\u003C\u002Fh4>\n\u003Cp>The Free version of the Top Bar plugin is \u003Cstrong>not limited\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwpdarko.com\u002Fitems\u002Ftop-bar-pro\u002F\" rel=\"nofollow ugc\">PRO version\u003C\u002Fa> gives you access to a lot of new features: allow users to \u003Cstrong>close the Top Bar\u003C\u002Fstrong>, choose an \u003Cstrong>initial state\u003C\u002Fstrong>, add a \u003Cstrong>bottom border\u003C\u002Fstrong>, set a \u003Cstrong>time before the Top Bar appears\u003C\u002Fstrong>, bottom positioning, user visibility settings (\u003Cstrong>only for guests or registered users\u003C\u002Fstrong>), change the \u003Cstrong>font-size\u003C\u002Fstrong>…\u003C\u002Fp>\n\u003Ch4>Fully translatable\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>POT files included (\u002Flang\u002F)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Available fields\u002Foptions\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Status (active or inactive)\u003C\u002Fli>\n\u003Cli>Stay visible when scrolling\u003C\u002Fli>\n\u003Cli>Message (obviously)\u003C\u002Fli>\n\u003Cli>Button text\u003C\u002Fli>\n\u003Cli>Button URL\u003C\u002Fli>\n\u003Cli>Color\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Go to \u003Ca href=\"https:\u002F\u002Fwpdarko.com\u002Fsupport\u002Fdocs\u002Fget-started-with-the-top-bar-plugin\u002F\" rel=\"nofollow ugc\">the plugin’s documentation\u003C\u002Fa> if you need more information on how to use this plugin.\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>Find help on \u003Ca href=\"https:\u002F\u002Fwpdarko.com\u002Fsupport\" rel=\"nofollow ugc\">our support platform\u003C\u002Fa> for this plugin (we’ll answer you fast, promise).\u003C\u002Fp>\n","Simply the easiest way to add a topbar to your website. Create a notification bar in no-time and show a message and a button to your visitors.",20000,299110,80,43,"2026-01-29T19:32:00.000Z","6.9.4","3.6","",[20,21,22,23,4],"banner","info-bar","notification","notification-bar","https:\u002F\u002Fwpdarko.com\u002Ftop-bar\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftop-bar.3.0.6.zip",98,3,0,"2024-04-10 00:00:00","2026-03-15T15:16:48.613Z",[32,47,59],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":6,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":46},"CVE-2024-31928","top-bar-authenticated-admin-stored-cross-site-scripting-2","Top Bar  \u003C= 3.0.5 - Authenticated (Admin+) Stored Cross-Site Scripting","The Top Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=3.0.5","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-06-19 17:04:52",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F4195dbd4-7b6b-4201-887f-6da9bda618b8?source=api-prod",71,{"id":48,"url_slug":49,"title":50,"description":51,"plugin_slug":4,"theme_slug":37,"affected_versions":52,"patched_in_version":53,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":54,"updated_date":55,"references":56,"days_to_patch":58},"CVE-2024-1660","top-bar-authenticated-admin-stored-cross-site-scripting","Top Bar  \u003C= 3.0.4 - Authenticated (Admin+) Stored Cross-Site Scripting","The Top Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.","\u003C=3.0.4","3.0.5","2024-03-25 00:00:00","2024-04-16 16:04:27",[57],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F36abd7e9-0ca4-4c22-ab13-08f2632a6797?source=api-prod",23,{"id":60,"url_slug":61,"title":62,"description":63,"plugin_slug":4,"theme_slug":37,"affected_versions":64,"patched_in_version":65,"severity":39,"cvss_score":66,"cvss_vector":67,"vuln_type":42,"published_date":68,"updated_date":69,"references":70,"days_to_patch":72},"CVE-2022-2629","top-bar-authenticated-administrator-stored-cross-site-scripting","Top Bar \u003C= 3.0.3 - Authenticated (Administrator+) Stored Cross-Site Scripting","The Top Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the tpbr_message,tpbr_btn_text,tpbr_btn_url, and tpbr_color parameters. This allows authenticated users with administrator-level permissions to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=3.0.3","3.0.4",5.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2022-09-08 00:00:00","2024-01-22 19:56:02",[71],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F05ee4692-451b-4ff4-9bf0-8a16d39404ea?source=api-prod",502,{"slug":74,"display_name":7,"profile_url":8,"plugin_count":75,"total_installs":76,"avg_security_score":26,"avg_patch_time_days":77,"trust_score":78,"computed_at":79},"spwebguy",8,58800,175,78,"2026-04-03T23:29:58.865Z",[81,101,122,142,159],{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":16,"requires_at_least":94,"requires_php":95,"tags":96,"homepage":98,"download_link":99,"security_score":100,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"easy-notification-bar","Easy Notification Bar","1.7","wpexplorer","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpexplorer\u002F","\u003Cp>Easily add a custom top bar notification message to on your site with live customization options via the WordPress customizer. The plugin allows you to enter your notification bar text as well as an optional button to display next to your text. Perfect for notifying visitors of a current sale, hot product, warnings or other important messages.\u003C\u002Fp>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-notification-bar\u002F\" rel=\"ugc\">Easy Notification Bar\u003C\u002Fa> plugin makes use of the newer “wp_body_open” action hook introduced in WordPress 5.2.0 which allows the plugin to work better with any theme that has been updated to support the tag. Contrary to other notice bar solutions which rely on absolute positioning, this plugin inserts the notice bar right after the body tag so it should display perfectly without any conflicts on any well-coded theme.\u003C\u002Fp>\n\u003Cp>By default, the notification bar is “static” which means it displays at the top of your site so when you scroll down the page it will become “hidden”. This is generally better for usability and \u003Ca href=\"https:\u002F\u002Fwww.wpexplorer.com\u002Fwordpress-seo\u002F\" rel=\"nofollow ugc\">SEO\u003C\u002Fa>. However, in version 1.4 we added a new \u003Cstrong>sticky option\u003C\u002Fstrong> which you can enable in the Customizer so that the notification bar remains visible as you scroll down the page. The sticky functionality makes use of the CSS sticky property (not javascript).\u003C\u002Fp>\n\u003Cp>Although disabled by default, you can enable a \u003Cstrong>close icon\u003C\u002Fstrong> for your notice. When enabled, your visitors will see an “x” icon over the top bar which they can click to hide the message for their current and future sessions. This functionality makes use of localStorage (not cookies). You can also select to hide the notification bar when clicking the call to action button.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Sitewide (or homepage only) top notification bar.\u003C\u002Fli>\n\u003Cli>Easy setup via the WordPress customizer.\u003C\u002Fli>\n\u003Cli>Optional close icon.\u003C\u002Fli>\n\u003Cli>Optional sticky display.\u003C\u002Fli>\n\u003Cli>Custom background, color, text alignment and font size settings.\u003C\u002Fli>\n\u003Cli>Optional callout button.\u003C\u002Fli>\n\u003Cli>Responsive design so it looks good on mobile.\u003C\u002Fli>\n\u003Cli>Minimal code.\u003C\u002Fli>\n\u003Cli>Vanilla Javascript used for close icon (jQuery not needed).\u003C\u002Fli>\n\u003C\u002Ful>\n","A simple plugin for displaying a notice at the top of your website that can be closed by the visitor. Completely free and minimal without any upsells.",9000,135989,92,16,"2026-03-10T18:26:00.000Z","6.3","7.4",[20,97,22,23,4],"notice","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-notification-bar\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-notification-bar.1.7.zip",100,{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":111,"num_ratings":112,"last_updated":113,"tested_up_to":16,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":119,"download_link":120,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":121,"fetched_at":30},"notibar","Notibar – Notification Bar for WordPress","2.1.9","Ninja Team","https:\u002F\u002Fprofiles.wordpress.org\u002Fninjateam\u002F","\u003Cp>\u003Cstrong>Customizer for sticky header, notification bar, alert, promo code, marketing campaign, top banner\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin adds a \u003Cstrong>top notification bar\u003C\u002Fstrong> to indicate significant announcements on your website. You can set it as a sticky header that is visible when scrolling.\u003C\u002Fp>\n\u003Cp>The \u003Cstrong>Dismiss\u003C\u002Fstrong> button can be disabled, closed permanently, or toggled so that your visitors can easily find it again.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Instant live preview\u003C\u002Fstrong> mode helps you see how every setting affects the notification bar before you publish it.\u003C\u002Fp>\n\u003Cp>Notibar seamlessly integrates with your existing WordPress theme, ensuring a cohesive look and feel. It has integrated clear and compelling call-to-action buttons to drive user engagement and conversions.\u003C\u002Fp>\n\u003Ch3>⚡️ FEATURES\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>This alert banner is built to optimize appearance and drive a positive impact on your WordPress website traffic and conversions:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Designed with \u003Cstrong>clean\u003C\u002Fstrong> UI & modern style\u003C\u002Fli>\n\u003Cli>Display in \u003Cstrong>absolute\u003C\u002Fstrong> or \u003Cstrong>fixed\u003C\u002Fstrong> positioning\u003C\u002Fli>\n\u003Cli>Custom color, text, click-to-action\u003C\u002Fli>\n\u003Cli>Various notice bar \u003Cstrong>style presets\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Set text container width and alignment\u003C\u002Fli>\n\u003Cli>Actions for \u003Cstrong>Dismiss\u003C\u002Fstrong> button: disable, toggle, close for good\u003C\u002Fli>\n\u003Cli>WYSIWYG visual banner editor with \u003Cstrong>live preview\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Display on all pages\u002Fposts or specific page\u002Fpost ID\u003C\u002Fli>\n\u003Cli>Add different content for mobile devices\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🚀 TYPICAL USE CASES\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>These are good ideas on how to exploit the Notification Bar plugin:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Important announcements\u003C\u002Fli>\n\u003Cli>Technical notices\u003C\u002Fli>\n\u003Cli>Time-sensitive appeals for donation or CTA\u003C\u002Fli>\n\u003Cli>Subscription increase\u003C\u002Fli>\n\u003Cli>Terms or operational changes\u003C\u002Fli>\n\u003Cli>Privacy policy acknowledgments\u003C\u002Fli>\n\u003Cli>Maintenance messages\u003C\u002Fli>\n\u003Cli>Service outage or resource shortage\u003C\u002Fli>\n\u003Cli>Seasonal offers or promotions\u003C\u002Fli>\n\u003Cli>Driving traffic to other sites\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Notibar is ideal for you to promote upcoming events, new blog posts, product launches, or special offers with ease.\u003C\u002Fp>\n\u003Cp>Did you know? You can even capture email leads by offering incentives and integrating with your email marketing provider.\u003C\u002Fp>\n\u003Ch3>🎉 Supported Themes and Plugins\u003C\u002Fh3>\n\u003Cp>We have done extra work to ensure complete compatibility with all themes, page builders and other popular plugins.\u003C\u002Fp>\n\u003Ch3>📝 Documentation and Support\u003C\u002Fh3>\n\u003Cp>If you’re having issues, do let us know and we’ll try to help you out.\u003Cbr \u002F>\nYou can always reach us at \u003Ca href=\"http:\u002F\u002Fninjateam.org\u002Fsupport\" rel=\"nofollow ugc\">Ninja Team Support Center\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>♥️ Like this Top Bar Alert Plugin?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Rate us 5⭐ stars on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fnotibar\u002Freviews\u002F?filter=5#new-post\" rel=\"ugc\">WordPress.org\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Learn to \u003Ca href=\"https:\u002F\u002Fyaycommerce.com\u002Fcategory\u002Fwoocommerce-tutorials\u002F\" rel=\"nofollow ugc\">create successful online stores\u003C\u002Fa> with advanced built-in features.\u003C\u002Fli>\n\u003C\u002Ful>\n","Customizer for sticky header, notification bar, alert, promo code, marketing campaign, top banner",8000,129210,96,62,"2026-01-26T18:09:00.000Z","4.0","5.3.1",[117,20,23,118,4],"announcement","notifications","https:\u002F\u002Fninjateam.org\u002Fnotibar-wordpress-notification-bar","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnotibar.2.1.9.zip","2025-03-05 21:11:50",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":28,"num_ratings":28,"last_updated":132,"tested_up_to":133,"requires_at_least":114,"requires_php":18,"tags":134,"homepage":137,"download_link":138,"security_score":139,"vuln_count":140,"unpatched_count":140,"last_vuln_date":141,"fetched_at":30},"dima-take-action","Dima Take Action","1.0.5","PixelDima","https:\u002F\u002Fprofiles.wordpress.org\u002Fpixeldima\u002F","\u003Cp>Adds a beautiful, customizable take action banner containe a promotion or a news to the top or the bottom of your WordPress site.\u003Cbr \u002F>\nBanner that is dismissable and dismiss is saved by cookie.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Display a \u003Cstrong>message\u003C\u002Fstrong> with a \u003Cstrong>button\u003C\u002Fstrong> (optional).\u003C\u002Fli>\n\u003Cli>Background Image, Gradient color, RGBa Color.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Colors\u003C\u002Fstrong> are fully \u003Cstrong>customizable\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Position\u003C\u002Fstrong> the bar on \u003Cstrong>top\u003C\u002Fstrong> or \u003Cstrong>bottom\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Set \u003Cstrong>any height\u003C\u002Fstrong> you want.\u003C\u002Fli>\n\u003Cli>Display a \u003Cstrong>close button\u003C\u002Fstrong> for the visitor.\u003C\u002Fli>\n\u003Cli>Cookie Bar.\u003C\u002Fli>\n\u003Cli>Floating Button.\u003C\u002Fli>\n\u003Cli>Responsive.\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily lets you add a Top\u002FButtom Banner to display a notification and promotion.",300,13978,"2018-08-06T22:36:00.000Z","4.9.29",[20,135,123,4,136],"bottom-bar","wordpress-notification-bar","http:\u002F\u002Fpixeldima.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdima-take-action.zip",64,1,"2025-04-01 00:00:00",{"slug":143,"name":144,"version":145,"author":146,"author_profile":147,"description":148,"short_description":149,"active_installs":28,"downloaded":150,"rating":100,"num_ratings":140,"last_updated":151,"tested_up_to":152,"requires_at_least":153,"requires_php":18,"tags":154,"homepage":18,"download_link":158,"security_score":100,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"geo-targetly-geo-bar","Geo Targetly Geo Bar","1.0.1","geotargetly","https:\u002F\u002Fprofiles.wordpress.org\u002Fgeotargetly\u002F","\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FaHZ-xmy8QEA?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Cstrong>Geo Bar\u003C\u002Fstrong> lets you display notification bars to website visitors based on their \u003Cstrong>country, state\u002Fregion, city, lat-long radius, or IP address\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Use it to promote local offers, deliver regional messages, or direct users to location-specific pages, all without disrupting the browsing experience.\u003C\u002Fp>\n\u003Cp>Each bar can contain custom \u003Cstrong>text and an optional button\u003C\u002Fstrong>, and can be styled to match your site. Choose from \u003Cstrong>Small, Medium, or Big\u003C\u002Fstrong> sizes (auto-adjusts font, padding, line-height) and control colors, fonts, and button presence per location.\u003C\u002Fp>\n\u003Cp>You can also define \u003Cstrong>scheduling rules\u003C\u002Fstrong> – show bars on specific days, times, and time zones. Create multiple geo-targeted bars and manage them all with ease.\u003C\u002Fp>\n\u003Cp>Made by \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\u002F\" rel=\"nofollow ugc\">Geo Targetly\u003C\u002Fa>, this plugin is ideal for subtle but powerful location-based messaging.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Paid account is required\u003C\u002Fstrong> – \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\u002Fpricing\" rel=\"nofollow ugc\">see pricing\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>14-day free trial\u003C\u002Fstrong> – no credit card needed\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Show notification bars by \u003Cstrong>country, region, city, radius, or IP\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Customize \u003Cstrong>text, colors, font size, button, and bar placement\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Choose \u003Cstrong>bar size\u003C\u002Fstrong>: Small (10px), Medium (13px), or Big (16px)\u003C\u002Fli>\n\u003Cli>Create multiple geo bars with separate targeting rules\u003C\u002Fli>\n\u003Cli>Schedule bars by \u003Cstrong>day, hour, and the visitor’s timezone\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>An optional \u003Cstrong>call-to-action button\u003C\u002Fstrong> with a link\u003C\u002Fli>\n\u003Cli>Display at \u003Cstrong>the top or bottom\u003C\u002Fstrong> of the page\u003C\u002Fli>\n\u003Cli>Lightweight script – no coding required\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Detailed docs can be found below\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Overview https:\u002F\u002Fgeotargetly.com\u002Fgeo-bar\u003C\u002Fli>\n\u003Cli>Quick Start Guide https:\u002F\u002Fhelp.geotargetly.com\u002Fen\u002Farticles\u002F2158835-geobar-quick-start-guide\u003C\u002Fli>\n\u003Cli>Docs https:\u002F\u002Fhelp.geotargetly.com\u002Fen\u002Fcollections\u002F738535-geo-bars\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Live chat at \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\" title=\"Geo Targetly\" rel=\"nofollow ugc\">Geo Targetly\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to an external endpoint via the domain https:\u002F\u002Fg1980843351.co to load and run a script that powers its core functionality, as outlined previously in the description.\u003C\u002Fp>\n\u003Cp>It sends the user’s location each time the plugin is loaded. This is necessary to determine and customize the plugin’s behavior based on the user’s geographical context.\u003C\u002Fp>\n\u003Cp>Additionally, this plugin connects to analytics endpoint https:\u002F\u002Fg97676560.co\u002F to track plugin installation and usage over time.\u003C\u002Fp>\n\u003Cp>This service is provided by Geo Targetly – \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\u002Fwebsite-terms-of-use\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\u002Fprivacy-policy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>.\u003C\u002Fp>\n","Show sleek top or bottom bars by location. Deliver geo-targeted messages with customizable call-to-action text and design.",180,"2025-12-02T18:21:00.000Z","6.8.5","3.0",[155,156,157,23,4],"call-to-action","geo-targeting","local-banner","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgeo-targetly-geo-bar.1.0.1.zip",{"slug":160,"name":161,"version":125,"author":162,"author_profile":163,"description":164,"short_description":165,"active_installs":28,"downloaded":166,"rating":28,"num_ratings":28,"last_updated":18,"tested_up_to":16,"requires_at_least":167,"requires_php":95,"tags":168,"homepage":169,"download_link":170,"security_score":100,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":171},"topbuddy","Notification Bar for WordPress – TopBuddy","wptopbuddy","https:\u002F\u002Fprofiles.wordpress.org\u002Firina1511\u002F","\u003Cp>TopBuddy is a modern WordPress notification bar plugin that lets you draw attention to important messages without cluttering your page. Use a visual builder with live preview to craft notification bars that match your brand. Whether you want to promote a sale, announce a new feature, share a cookie policy or welcome new visitors, TopBuddy gives you all the tools you need to deliver the right message at the right time.\u003C\u002Fp>\n\u003Ch3>Why choose TopBuddy?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Enhance discoverability:\u003C\u002Fstrong> Announce promotions, product launches or updates in an eye‑catching way that visitors can’t miss.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Boost engagement:\u003C\u002Fstrong> Add call‑to‑action buttons that encourage sign‑ups, downloads or purchases directly from the bar.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Guide user journeys:\u003C\u002Fstrong> Direct visitors to key pages (store, blog, sign‑up forms) and improve navigation without taking up space in your layout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Improve user experience:\u003C\u002Fstrong> Use sticky bars so your announcement or navigation stays available while users scroll down long pages.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Ch3>🧱 Easy Visual Builder\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Drag & drop interface:\u003C\u002Fstrong> Create notification bars with a visual builder – simply drag components like icons, titles, messages, buttons or images into place.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Live preview:\u003C\u002Fstrong> See your changes in real time so you can perfect your design before publishing.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Template library:\u003C\u002Fstrong> Get started quickly with pre‑made templates designed for common scenarios such as promotions, welcome messages or announcements.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Built‑in components:\u003C\u002Fstrong> Choose from multiple component types including icons, text, buttons and images. No coding required.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🎨 Customization & Styling\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Full color control:\u003C\u002Fstrong> Customize background, text and button colors to match your site’s branding.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Adjust sizes & spacing:\u003C\u002Fstrong> Set sizes for any of the available components.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Font sizes:\u003C\u002Fstrong> Font sizes are easily changeable by simply selecting from a list of predefined sizes.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Button styles:\u003C\u002Fstrong> Choose between link‑style or button‑style call‑to‑action buttons, with separate hover state colors.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Icon library:\u003C\u002Fstrong> Access a built‑in library of icons to enhance your message.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Responsive design:\u003C\u002Fstrong> All bars are mobile‑friendly, ensuring they look great on desktops, tablets and phones.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Alignment and content size\u003C\u002Fstrong> Change the alignment or maximum content width with ease.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>⚙️ Display & Targeting Controls\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Flexible positioning:\u003C\u002Fstrong> Show bars at the top or bottom of your website and decide whether they are fixed or sticky on scroll.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advanced display rules:\u003C\u002Fstrong> Display bars site‑wide, on specific page types (posts, pages, custom post types) or target individual pages and taxonomies using an AJAX‑powered search.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User targeting:\u003C\u002Fstrong> Show different bars based on user roles (administrator, editor, subscriber, etc.) or login status (logged in, logged out or both).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multiple bars:\u003C\u002Fstrong> Manage multiple notification bars from a single dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>📣 User Interaction\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Call‑to‑action buttons:\u003C\u002Fstrong> Add buttons that link to any URL or trigger actions (e.g., opening a form or modal).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dismiss & recall:\u003C\u002Fstrong> Include a close button so visitors can hide the bar, with options to disable the button.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cookie dismissal:\u003C\u002Fstrong> Remember visitors’ choices and configure how long a dismissed bar stays hidden before it reappears.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Typical Use Cases\u003C\u002Fh3>\n\u003Cp>TopBuddy is versatile and can be used across websites of any size or niche. Here are a few examples:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Promotions and sales:\u003C\u002Fstrong> Highlight discount codes or time‑sensitive offers to boost conversions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Welcome messages:\u003C\u002Fstrong> Greet new visitors with a friendly note or a link to your most popular content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Important announcements:\u003C\u002Fstrong> Notify users about product updates, policy changes, maintenance windows or new features.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cookie notices and compliance:\u003C\u002Fstrong> Inform visitors of cookie usage or privacy policy requirements without disruptive pop‑ups.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lead generation:\u003C\u002Fstrong> Combine notification bars with subscription or contact forms to capture email leads.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Navigation aid:\u003C\u002Fstrong> Use sticky bars to keep primary navigation or “back to top” buttons within reach.\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily add a customizable notification bar at the top or bottom of your website to display announcements, promotions, and important messages.",192,"5.5",[20,97,22,23,4],"https:\u002F\u002Fwptopbuddy.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftopbuddy.1.0.5.zip","2026-03-15T10:48:56.248Z",{"attackSurface":173,"codeSignals":210,"taintFlows":346,"riskAssessment":347,"analyzedAt":355},{"hooks":174,"ajaxHandlers":206,"restRoutes":207,"shortcodes":208,"cronEvents":209,"entryPointCount":28,"unprotectedCount":28},[175,181,185,189,193,197,202],{"type":176,"name":177,"callback":178,"file":179,"line":180},"action","admin_enqueue_scripts","add_admin_topbar_style","inc\\topbar-admin-scripts.php",4,{"type":176,"name":182,"callback":183,"file":184,"line":180},"wp_enqueue_scripts","add_topbar_style","inc\\topbar-front-scripts.php",{"type":176,"name":186,"callback":187,"file":188,"line":180},"admin_menu","tpbr_create_menu","inc\\topbar-settings.php",{"type":176,"name":190,"callback":191,"file":188,"line":192},"admin_init","register_tpbr_settings",13,{"type":176,"name":194,"callback":195,"file":196,"line":180},"plugins_loaded","tpbr_load_plugin_textdomain","inc\\topbar-text-domain.php",{"type":176,"name":190,"callback":198,"priority":199,"file":200,"line":201},"topbar_free_pro_check",99,"topbar.php",28,{"type":176,"name":203,"callback":204,"file":200,"line":205},"admin_notices","tpbr_admin_notice",32,[],[],[],[],{"dangerousFunctions":211,"sqlUsage":212,"outputEscaping":214,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":345},[],{"prepared":28,"raw":28,"locations":213},[],{"escaped":58,"rawEcho":215,"locations":216},67,[217,220,222,224,225,226,227,229,230,232,234,236,237,238,240,242,244,246,248,250,252,254,256,258,260,262,264,266,268,270,272,273,275,277,279,281,283,285,287,289,291,293,295,297,299,301,303,305,307,309,311,313,315,317,319,321,323,325,327,329,331,333,335,337,339,341,343],{"file":188,"line":218,"context":219},42,"raw output",{"file":188,"line":221,"context":219},53,{"file":188,"line":223,"context":219},58,{"file":188,"line":139,"context":219},{"file":188,"line":215,"context":219},{"file":188,"line":46,"context":219},{"file":188,"line":228,"context":219},74,{"file":188,"line":78,"context":219},{"file":188,"line":231,"context":219},81,{"file":188,"line":233,"context":219},85,{"file":188,"line":235,"context":219},90,{"file":188,"line":111,"context":219},{"file":188,"line":199,"context":219},{"file":188,"line":239,"context":219},103,{"file":188,"line":241,"context":219},106,{"file":188,"line":243,"context":219},110,{"file":188,"line":245,"context":219},115,{"file":188,"line":247,"context":219},122,{"file":188,"line":249,"context":219},125,{"file":188,"line":251,"context":219},129,{"file":188,"line":253,"context":219},132,{"file":188,"line":255,"context":219},136,{"file":188,"line":257,"context":219},139,{"file":188,"line":259,"context":219},143,{"file":188,"line":261,"context":219},151,{"file":188,"line":263,"context":219},156,{"file":188,"line":265,"context":219},159,{"file":188,"line":267,"context":219},161,{"file":188,"line":269,"context":219},166,{"file":188,"line":271,"context":219},172,{"file":188,"line":77,"context":219},{"file":188,"line":274,"context":219},179,{"file":188,"line":276,"context":219},182,{"file":188,"line":278,"context":219},186,{"file":188,"line":280,"context":219},189,{"file":188,"line":282,"context":219},193,{"file":188,"line":284,"context":219},200,{"file":188,"line":286,"context":219},204,{"file":188,"line":288,"context":219},207,{"file":188,"line":290,"context":219},209,{"file":188,"line":292,"context":219},213,{"file":188,"line":294,"context":219},216,{"file":188,"line":296,"context":219},218,{"file":188,"line":298,"context":219},222,{"file":188,"line":300,"context":219},229,{"file":188,"line":302,"context":219},232,{"file":188,"line":304,"context":219},236,{"file":188,"line":306,"context":219},239,{"file":188,"line":308,"context":219},243,{"file":188,"line":310,"context":219},253,{"file":188,"line":312,"context":219},259,{"file":188,"line":314,"context":219},266,{"file":188,"line":316,"context":219},269,{"file":188,"line":318,"context":219},272,{"file":188,"line":320,"context":219},276,{"file":188,"line":322,"context":219},279,{"file":188,"line":324,"context":219},282,{"file":188,"line":326,"context":219},286,{"file":188,"line":328,"context":219},289,{"file":188,"line":330,"context":219},292,{"file":188,"line":332,"context":219},296,{"file":188,"line":334,"context":219},299,{"file":188,"line":336,"context":219},302,{"file":188,"line":338,"context":219},306,{"file":188,"line":340,"context":219},313,{"file":188,"line":342,"context":219},317,{"file":188,"line":344,"context":219},327,[],[],{"summary":348,"deductions":349},"The \"top-bar\" plugin, version 3.0.6, presents a mixed security picture.  On the positive side, static analysis reveals no identified dangerous functions, no SQL queries without prepared statements, no file operations, no external HTTP requests, and importantly, no identified taint flows of any severity. The attack surface also appears clean with zero identified entry points without authorization.  However, a significant concern arises from the code's output escaping, with only 26% of outputs being properly escaped. This indicates a high potential for Cross-Site Scripting (XSS) vulnerabilities, especially given the plugin's history.  The plugin has a history of three medium-severity Cross-Site Scripting vulnerabilities, with the most recent one being addressed in April 2024. While there are currently no unpatched CVEs, the recurring nature of XSS issues suggests a systemic weakness in how user-provided data is handled and sanitized before being rendered in the front-end.",[350,352],{"reason":351,"points":75},"Low percentage of properly escaped output",{"reason":353,"points":354},"History of medium severity XSS vulnerabilities",6,"2026-03-16T17:34:32.890Z",{"wat":357,"direct":372},{"assetPaths":358,"generatorPatterns":364,"scriptPaths":365,"versionParams":371},[359,360,361,362,363],"\u002Fwp-content\u002Fplugins\u002Ftop-bar\u002Fcss\u002Fadmin_topbar_icon.css","\u002Fwp-content\u002Fplugins\u002Ftop-bar\u002Fcss\u002Fadmin_topbar_style.css","\u002Fwp-content\u002Fplugins\u002Ftop-bar\u002Fjs\u002Ftpbr.min.js","\u002Fwp-content\u002Fplugins\u002Ftop-bar\u002Fcss\u002Ftopbar_style.css","\u002Fwp-content\u002Fplugins\u002Ftop-bar\u002Fjs\u002Ftpbr_front.min.js",[],[366,367,368,369,370],"..\u002Fcss\u002Fadmin_topbar_icon.css","..\u002Fcss\u002Fadmin_topbar_style.css","..\u002Fjs\u002Ftpbr.min.js","..\u002Fcss\u002Ftopbar_style.css","..\u002Fjs\u002Ftpbr_front.min.js",[],{"cssClasses":373,"htmlComments":374,"htmlAttributes":375,"restEndpoints":376,"jsGlobals":377,"shortcodeOutput":379},[],[],[],[],[378],"tpbr_settings",[]]