WordPress TopBar plugin cross-site request forgery vulnerability

WordPress TopBar plugin is a plugin for adding a notification bar at the top of your website, mainly used to display messages, links or promotional content to help users attract attention and increase conversions. The WordPress TopBar plugin suffers from a cross-site request forgery vulnerability...

CVE-2025-10300

The TopBar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.0. This is due to missing or incorrect nonce validation on the fmenbtopbarsavesettings function. This makes it possible for unauthenticated attackers to update the plugin's settin...

CVE-2025-10300 TopBar <= 1.0.0 - Cross-Site Request Forgery to Settings Update

The TopBar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.0. This is due to missing or incorrect nonce validation on the fmenbtopbarsavesettings function. This makes it possible for unauthenticated attackers to update the plugin's settin...

CVE-2025-10300 TopBar <= 1.0.0 - Cross-Site Request Forgery to Settings Update

The TopBar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.0. This is due to missing or incorrect nonce validation on the fmenbtopbarsavesettings function. This makes it possible for unauthenticated attackers to update the plugin's settin...

EUVD-2025-34551

The TopBar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.0. This is due to missing or incorrect nonce validation on the fmenbtopbarsavesettings function. This makes it possible for unauthenticated attackers to update the plugin's settin...

EUVD-2023-27767

Malicious code in bioql PyPI...

CVE-2023-23680

Cross-Site Request Forgery CSRF vulnerability in Bob Goetz WP-TopBar plugin = 5.36 versions...

CVE-2023-23680

Cross-Site Request Forgery CSRF vulnerability in Bob Goetz WP-TopBar plugin = 5.36 versions...

CVE-2023-23680 WordPress WP TopBar Plugin <= 5.36 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Bob Goetz WP-TopBar plugin = 5.36 versions...

CVE-2023-23824 WordPress WP TopBar Plugin <= 5.36 is vulnerable to SQL Injection

Auth. SQL Injection SQLi vulnerability in WP-TopBar = 5.36 versions...

WordPress WP TopBar Plugin <= 3.04 - Cross Site Scripting

This plugin is prone to a cross site scripting vulnerability in ZeroClipboard.swf. Solution Update the plugin...

PWordPress WP Topbar plugin 4.02 - Multiple Vulnerabilities

WordPress WP Topbar plugin is prone to multiple vulnerabilities such as cross-site request forgery and stored XSS. Solution Upgrade to 4.03 version...