Does AIKCT Engine Chatbot have any unpatched vulnerabilities?

No. All known vulnerabilities in AIKCT Engine Chatbot have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AIKCT Engine Chatbot compatible with WordPress 6.7.5?

According to WordPress.org data, AIKCT Engine Chatbot 1.6.8 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is AIKCT Engine Chatbot compatible with PHP 5.6+?

AIKCT Engine Chatbot requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is AIKCT Engine Chatbot updated?

AIKCT Engine Chatbot was last updated on Oct 22, 2025. Frequent updates are generally a positive security signal.

What is AIKCT Engine Chatbot's security score?

AIKCT Engine Chatbot has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AIKCT Engine Chatbot Security & Risk Analysis

wordpress.org/plugins/ai-seo-translator

The KCT AI plugin is a WordPress add-on designed to integrate AI capabilities into both the TinyMCE (TinyEditor) and Gutenberg editors.

10 active installs v1.6.8 PHP 5.6+ WP 4.6+ Updated Oct 22, 2025

aichatgptgeminigptgpt-4o

A · Safe

CVEs total1

Unpatched0

Last CVEDec 11, 2024

Plugin page Download

Safety Verdict

Is AIKCT Engine Chatbot Safe to Use in 2026?

Generally Safe

Score 99/100

AIKCT Engine Chatbot has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 11, 2024Updated 5mo ago

Risk Assessment

The ai-seo-translator plugin v1.6.8 exhibits a generally positive security posture, with a high percentage of properly escaped outputs and a majority of SQL queries using prepared statements. The plugin also demonstrates good practice by implementing nonce and capability checks on most entry points. However, there is a notable concern regarding the REST API, which has one route lacking a permission callback, creating an unprotected entry point. The taint analysis shows no critical or high severity vulnerabilities, which is encouraging. The plugin's vulnerability history, while showing one past medium CVE, indicates that previous issues have been patched, suggesting active maintenance. Despite the presence of a past medium vulnerability and the unprotected REST API endpoint, the overall implementation of security best practices, such as output escaping and prepared statements, suggests a relatively well-secured plugin. The single unprotected REST API route is the most significant immediate risk, warranting attention.

Key Concerns

Unprotected REST API route
Past medium severity vulnerability

Vulnerabilities

AIKCT Engine Chatbot Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-54306medium · 4.3Cross-Site Request Forgery (CSRF)

AIKCT Engine Chatbot, ChatGPT, Gemini, GPT-4o Best AI Chatbot <= 1.6.2 - Cross-Site Request Forgery via update_integration_option

Dec 11, 2024 Patched in 1.6.3 (8d)

Code Analysis

Analyzed Mar 17, 2026

AIKCT Engine Chatbot Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

148 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius1.0

SQL Query Safety

80% prepared10 total queries

Output Escaping

92% escaped161 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

10 flows2 with unsanitized paths

aikct_create_image_for_post_handler (ai-seo-tranlater.php:453)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

AIKCT Engine Chatbot Attack Surface

Entry Points25

Unprotected1

AJAX Handlers 24

authwp_ajax_aikct_get_prompt_paramsadmin\aikct-prompt-manager.php:33

authwp_ajax_kct_ai_qai-seo-tranlater.php:71

noprivwp_ajax_kct_ai_qai-seo-tranlater.php:72

authwp_ajax_save_api_keysai-seo-tranlater.php:80

authwp_ajax_get_free_api_keyai-seo-tranlater.php:81

authwp_ajax_create_image_for_postai-seo-tranlater.php:82

authwp_ajax_suggest_prompt_imgai-seo-tranlater.php:83

authwp_ajax_set_post_thumbnailai-seo-tranlater.php:85

authwp_ajax_aikct_suggest_tagai-seo-tranlater.php:88

authwp_ajax_aikct_suggest_commentsai-seo-tranlater.php:89

authwp_ajax_aikct_add_comments_to_postai-seo-tranlater.php:90

authwp_ajax_aikct_idea_title_postai-seo-tranlater.php:91

authwp_ajax_aikct_create_draft_postai-seo-tranlater.php:92

authwp_ajax_update_integration_optionai-seo-tranlater.php:93

authwp_ajax_scan_and_rewrite_urlinc\class-aikct-button-rewrite-artilce.php:150

authwp_ajax_verify_youtube_videoinc\class-aikct-button-youtube.php:217

authwp_ajax_get_prompt_contentinc\class-aikct-rewrite-post.php:938

authwp_ajax_load_customer_prompt_propertiesinc\class-aikct-rewrite-post.php:1027

authwp_ajax_save_url_promptsinc\class-aikct-rewrite-post.php:1055

authwp_ajax_delete_url_promptinc\class-aikct-rewrite-post.php:1101

authwp_ajax_get_prompt_contentpro\class-aikct-rewrite-post.php:122

authwp_ajax_load_customer_prompt_propertiespro\class-aikct-rewrite-post.php:190

authwp_ajax_save_url_promptspro\class-aikct-rewrite-post.php:217

authwp_ajax_delete_url_promptpro\class-aikct-rewrite-post.php:267

REST API Routes 1

POST/wp-json/aikct/v1/api_callinc\class-aikct-button-youtube.php:190

WordPress Hooks 22

actionplugins_loadedai-seo-tranlater.php:65

actionadmin_headai-seo-tranlater.php:70

actionadd_meta_boxesai-seo-tranlater.php:73

actionadmin_menuai-seo-tranlater.php:74

actionedit_form_after_titleai-seo-tranlater.php:84

actionwp_headai-seo-tranlater.php:97

actionwp_footerai-seo-tranlater.php:98

actionadmin_enqueue_scriptsai-seo-tranlater.php:508

actionenqueue_block_editor_assetsai-seo-tranlater.php:509

filtermce_buttonsai-seo-tranlater.php:512

filtermce_external_pluginsai-seo-tranlater.php:513

actionrest_api_initinc\class-aikct-button-youtube.php:6

actioninitinc\class-aikct-prompt-cpt.php:50

actionadmin_menuinc\class-aikct-prompt-cpt.php:53

actionadd_meta_boxesinc\class-aikct-prompt-cpt.php:167

actionsave_postinc\class-aikct-prompt-cpt.php:168

actionadmin_menuinc\class-aikct-rewrite-post.php:108

actionadmin_initinc\class-aikct-rewrite-post.php:110

actioninitinc\class-aikct-rewrite-post.php:113

filtercron_schedulesinc\class-aikct-rewrite-post.php:115

actioninitinc\class-aikct-rewrite-post.php:1132

actioninitpro\class-aikct-rewrite-post.php:302

Maintenance & Trust

AIKCT Engine Chatbot Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedOct 22, 2025

PHP min version5.6

Downloads3K

Community Trust

Rating60/100

Number of ratings4

Active installs10

Alternatives

AIKCT Engine Chatbot Alternatives

AI Bud – AI Content Generator, AI Chatbot, ChatGPT, Gemini, GPT-4o

aibuddy-openai-chatgpt

100

AI Bud an AI Content & Image Generation, AI ChatBot, ChatGPT, OpenAI, Perplexity, Gemini, GPT-4o, LLAMA, Mistral

3K No CVEs

StifLi Flex MCP – AI Chat Agent and MCP Server

stifli-flex-mcp

100

AI Chat Agent for WordPress. Chat directly from your admin panel & manage content, WooCommerce and your site via natural conversation.

800 No CVEs

Ai Auto Tool Content Writing Assistant All in One

ai-auto-tool

AI Content Writing Assistant with Google Gemini AI , Chat GPT 3.5, You Don't need an API KEY, It's free and easy to use.

100 2 unpatched

Limb AI Chatbot

limb-chatbot

100

AI chatbot with ChatGPT, Gemini 2.5, RAG technology, WooCommerce integration, live agent, and unlimited knowledge training.

70 No CVEs

MP AI Content Generator

mp-ai-content-generator

100

Seamlessly generate AI-powered content in your WordPress editor using Google Gemini or OpenAI's ChatGPT with a simple prompt.

20 No CVEs

Developer Profile

AIKCT Engine Chatbot Developer Profile

aitool

3 plugins · 110 total installs

trust score

Avg Security Score

81/100

Avg Patch Time

84 days

View full developer profile

Detection Fingerprints

How We Detect AIKCT Engine Chatbot

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ai-seo-translator/assets/css/style.css/wp-content/plugins/ai-seo-translator/assets/js/main.js

Script Paths

/wp-content/plugins/ai-seo-translator/assets/js/main.js

Version Parameters

ai-seo-translator/assets/css/style.css?ver=ai-seo-translator/assets/js/main.js?ver=

HTML / DOM Fingerprints

HTML Comments

Data Attributes

data-id="aikct_images"data-id="aikct_tags"data-id="aikct_comment"data-id="aikct_blogfromyoutube"data-id="aikct_rewrite_from_url"data-id="aikct_idea_title"

JS Globals

window.KCTAI_VERwindow.KCTAI_URLwindow.KCTAI_DIRwindow.KCTAI_BASEwindow.aikct_suggest_content

REST Endpoints

/wp-json/aikct/v1/settings/wp-json/aikct/v1/integrations

FAQ