CVE-2025-31610 Information

Apr 03, 2025 cve

Description

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in gingerplugins Notification Bar Sticky Notification Bar Sticky Welcome Bar for any theme allows Stored XSS. This issue affects Notification Bar Sticky Notification Bar Sticky Welcome Bar for any theme: from n/a through 1.1.

Reference

https://patchstack.com/database/wordpress/plugin/gp-notification-bar/vulnerability/wordpress-notification-bar-sticky-notification-bar-sticky-welcome-bar-for-any-theme-plugin-1-1-cross-site-scripting-xss-vulnerability?_s_id=cve

Share on: