Really Simple Security logo

Log out
Get PRO

Welcome Bar

  • Welcome Bar on WordPress.org
  • Current version: 2.0.4
  • Last update: March 30, 2023
  • Known issues: Open
Data443, a publicly traded data security and privacy compliance company, has launched a new plugin called Welcome Bar. The plugin displays a message or offer to visitors who arrive at a specific URL, allowing site owners to target users from a particular source. The company suggests using the plugin to welcome users from a guest post, partnership or social media campaign, or to offer a discount coupon when receiving traffic from a certain marketplace or retargeting campaign.

This information is sourced from wpvulnerabilities.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Submit

Vulnerabilities

  • Input validation vulnerability in Welcome Bar 2.0.4

    Open

    The Welcome Bar plugin used in WordPress has a security issue called Stored Cross-Site Scripting. This means that attackers who have administrator-level access can add harmful web scripts to pages, w...

    Read More

  • Input validation vulnerability in Welcome Bar 2.0.3

    Fixed

    The Welcome Bar plugin for WordPress is vulnerable to a type of attack called Cross-Site Request Forgery (CSRF). This type of attack affects versions up to and including 2.0.3. The problem is caused ...

    Read More

  • Access violation vulnerability in Welcome Bar 2.0.3

    Fixed

    The Welcome Bar for WordPress is a feature that was vulnerable to an attack in versions up to 2.0.3. This issue was caused by an oversight which allowed users with 'subscriber' level access to execut...

    Read More