Simple Banner Project Simple Banner — known CVE vulnerabilities
Every CVE whose affected-product data names Simple Banner Project Simple Banner, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-2515 — CVSS 6.4 (medium): The Simple Banner plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `pro_version_activation_code` parameter in…
CVE-2021-24574 — CVSS 4.8 (medium): The Simple Banner WordPress plugin before 2.10.4 does not sanitise and escape one of its settings, allowing high privilege users such as…
CVE-2022-0446 — CVSS 4.8 (medium): The Simple Banner WordPress plugin before 2.12.0 does not properly sanitize its "Simple Banner Text" Settings allowing high privilege users…
CVE-2024-12769 — CVSS 3.5 (low): The Simple Banner WordPress plugin before 3.0.4 does not sanitise and escape some of its settings, which could allow high privilege users…