VYPR

Banner Manager

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-30565HigMar 24, 2025
    risk 0.46cvss 7.1epss 0.00

    Cross-Site Request Forgery (CSRF) vulnerability in karrikas banner-manager banner-manager allows Stored XSS.This issue affects banner-manager: from n/a through <= 16.04.19.

  • CVE-2022-1694MedJun 13, 2022
    risk 0.42cvss 6.5epss 0.01

    The Useful Banner Manager WordPress plugin through 1.6.1 does not perform CSRF checks on POST requests to its admin page, allowing an attacker to trick a logged in admin to add, modify or delete banners from the plugin by submitting a form.