Does WP Plugin Banner have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Plugin Banner have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Plugin Banner compatible with WordPress 4.7.32?

According to WordPress.org data, WP Plugin Banner 1.0.2 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is WP Plugin Banner updated?

WP Plugin Banner was last updated on Oct 16, 2016. Frequent updates are generally a positive security signal.

What is WP Plugin Banner's security score?

WP Plugin Banner has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Plugin Banner Security & Risk Analysis

wordpress.org/plugins/wp-plugin-banner

Easily display the banner image and title of a plugin on the WordPress.org Directory within your WordPress posts.

10 active installs v1.0.2 PHP + WP 4.0+ Updated Oct 16, 2016

bannerwordpress-org

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Plugin Banner Safe to Use in 2026?

Generally Safe

Score 85/100

WP Plugin Banner has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The 'wp-plugin-banner' plugin v1.0.2 exhibits a mixed security posture. On the positive side, it has no known historical vulnerabilities (CVEs) and the static analysis reveals no critical or high-severity taint flows, no dangerous functions, and all SQL queries utilize prepared statements. This suggests a generally cautious approach to core functionalities. However, significant concerns arise from the lack of output escaping. With 7 total outputs and 0% properly escaped, there's a high risk of Cross-Site Scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into the site. Furthermore, the absence of nonce checks and capability checks on its single shortcode entry point is a major weakness. This means any authenticated user, regardless of their role or permissions, could potentially trigger the shortcode's functionality, leading to unintended actions or data manipulation.

Key Concerns

0% output escaping on 7 outputs
Missing nonce check on shortcode
Missing capability check on shortcode

Vulnerabilities

None known

WP Plugin Banner Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

WP Plugin Banner Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped7 total outputs

Attack Surface

WP Plugin Banner Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[plugin_banner] wp-plugin-banner.php:32

WordPress Hooks 2

actionwp_enqueue_scriptswp-plugin-banner.php:33

actionplugins_loadedwp-plugin-banner.php:115

Maintenance & Trust

WP Plugin Banner Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedOct 16, 2016

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

WP Plugin Banner Alternatives

CookieYes – Cookie Banner for Cookie Consent (Easy to setup GDPR/CCPA Compliant Cookie Notice)

cookie-law-info

100

Easily set up cookie banner or notice in WordPress, and policy pages for compliance with global cookie laws (GDPR, DSGVO, RGPD, CCPA/CPRA, etc).

1.0M 1 CVE

CookieAdmin – Cookie Consent Banner

cookieadmin

100

CookieAdmin provides easy to configure cookie consent banner with GDPR and CCPA law support.

300K No CVEs

GDPR Cookie Compliance – Cookie Banner, Cookie Consent, Cookie Notice for CCPA, EU Cookie Law

gdpr-cookie-compliance

Cookie notice banner for GDPR, CCPA, EU cookie law, data protection and privacy regulations and other cookie law and consent notice requirements on yo …

300K 9 CVEs

iubenda | All-in-one Compliance for GDPR / CCPA Cookie Consent + more

iubenda-cookie-law-solution

The solution for GDPR compliance + more. Get your cookie banner, privacy policy, terms and conditions and handle cookie consent in just one plugin.

200K 4 CVEs

Cookiebot by Usercentrics – Automatic Cookie Banner for GDPR/CCPA & Google Consent Mode

cookiebot

Install your cookie banner in minutes. Automatically scan and block cookies to comply with the GDPR, CCPA, Google Consent Mode v2. Free plan option.

100K 1 unpatched

Developer Profile

WP Plugin Banner Developer Profile

Chris Klosowski

9 plugins · 860 total installs

trust score

Avg Security Score

87/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Plugin Banner

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-plugin-banner/assets/style.css

HTML / DOM Fingerprints

CSS Classes

wp-plugin-banner-linkplugin-title

Data Attributes

itemprop="name"

REST Endpoints

/wp-json/wp/v2/plugins

Shortcode Output

<div class="plugin-title style="background-image: url(https://plugins.svn.wordpress.org/ <div class="vignette"></div>

FAQ