WP-Safety

AICOSO Click to Chat and Order Security & Risk Analysis

wordpress.org/plugins/aicoso-click-to-chat

WooCommerce WhatsApp plugin allows to enquire via WhatsApp in a click. Smart whats app button for messaging via WooCommerce WhatsApp integration.

10 active installs v1.0.1 PHP 7.4+ WP 6.2+ Updated Jan 22, 2026
click-to-chatwhatsappwhatsapp-businesswhatsapp-chatwoocommerce-whatsapp
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is AICOSO Click to Chat and Order Safe to Use in 2026?

Generally Safe

Score 100/100

AICOSO Click to Chat and Order has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The static analysis of the "aicoso-click-to-chat" plugin v1.0.1 indicates a generally good security posture. The plugin exhibits strong adherence to best practices by properly escaping all output and performing nonce and capability checks on its entry points. The absence of file operations and external HTTP requests further reduces the potential attack surface. The taint analysis revealed no critical or high-severity flows with unsanitized paths, and the vulnerability history shows no known CVEs, which is a positive sign.

However, the plugin does have a few areas for improvement. The presence of a single SQL query that does not utilize prepared statements presents a potential risk for SQL injection vulnerabilities, though the likelihood may be mitigated by other factors not visible in this analysis. While the total number of entry points is not excessively large, and all are reported as protected, the presence of unprotected AJAX handlers (even if none were found in the current scan) can be a point of concern if the codebase evolves without careful oversight.

In conclusion, the plugin is currently in a relatively secure state, demonstrating a commitment to secure coding practices like output escaping and authorization checks. The lack of past vulnerabilities and the clean taint analysis are encouraging. The primary concern lies with the single un-prepared SQL query. Addressing this would further strengthen the plugin's security.

Key Concerns

  • SQL queries not using prepared statements
Vulnerabilities
None known

AICOSO Click to Chat and Order Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

AICOSO Click to Chat and Order Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
0 prepared
Unescaped Output
0
201 escaped
Nonce Checks
12
Capability Checks
11
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

Select2

SQL Query Safety

0% prepared1 total queries

Output Escaping

100% escaped201 total outputs
Data Flows
All sanitized

Data Flow Analysis

1 flows
<settings-page> (admin\views\settings-page.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

AICOSO Click to Chat and Order Attack Surface

Entry Points10
Unprotected0

AJAX Handlers 9

authwp_ajax_ctc_chat_get_settingadmin\class-ctc-chat-settings.php:43
authwp_ajax_ctc_chat_search_productsadmin\class-ctc-chat-settings.php:44
authwp_ajax_ctc_chat_search_categoriesadmin\class-ctc-chat-settings.php:45
authwp_ajax_ctc_chat_search_pagesadmin\class-ctc-chat-settings.php:46
authwp_ajax_ctc_chat_search_postsadmin\class-ctc-chat-settings.php:47
authwp_ajax_ctc_chat_search_tagsadmin\class-ctc-chat-settings.php:48
authwp_ajax_ctc_chat_preview_messageadmin\class-ctc-chat-settings.php:49
authwp_ajax_ctc_chat_get_variation_urlpublic\class-ctc-chat-public.php:59
noprivwp_ajax_ctc_chat_get_variation_urlpublic\class-ctc-chat-public.php:60

Shortcodes 1

[ctc_chat_button] includes\class-ctc-chat-shortcodes.php:51
WordPress Hooks 41
actionadmin_menuadmin\class-ctc-chat-admin.php:54
actionadmin_enqueue_scriptsadmin\class-ctc-chat-admin.php:57
actionadd_meta_boxesadmin\class-ctc-chat-admin.php:63
actionsave_post_productadmin\class-ctc-chat-admin.php:66
actionbefore_woocommerce_initaicoso-click-to-chat.php:43
actionadmin_noticesaicoso-click-to-chat.php:59
actionplugins_loadedaicoso-click-to-chat.php:89
actionwoocommerce_before_cartincludes\class-ctc-chat-button-display.php:70
actionwoocommerce_after_cartincludes\class-ctc-chat-button-display.php:71
actionwoocommerce_before_checkout_formincludes\class-ctc-chat-button-display.php:72
actionwoocommerce_after_checkout_formincludes\class-ctc-chat-button-display.php:73
actionwoocommerce_thankyouincludes\class-ctc-chat-button-display.php:97
actionwp_footerincludes\class-ctc-chat-button-display.php:102
actionwoocommerce_single_product_summaryincludes\class-ctc-chat-button-display.php:124
actionwoocommerce_after_add_to_cart_formincludes\class-ctc-chat-button-display.php:127
actionwoocommerce_before_add_to_cart_buttonincludes\class-ctc-chat-button-display.php:132
actionwoocommerce_single_product_summaryincludes\class-ctc-chat-button-display.php:137
actionwoocommerce_before_single_product_summaryincludes\class-ctc-chat-button-display.php:141
actionwoocommerce_single_product_summaryincludes\class-ctc-chat-button-display.php:145
actionwoocommerce_after_cart_tableincludes\class-ctc-chat-button-display.php:159
actionwoocommerce_before_cart_tableincludes\class-ctc-chat-button-display.php:163
actionwoocommerce_proceed_to_checkoutincludes\class-ctc-chat-button-display.php:167
actionwoocommerce_after_cart_totalsincludes\class-ctc-chat-button-display.php:171
actionwoocommerce_cart_actionsincludes\class-ctc-chat-button-display.php:175
actionwoocommerce_review_order_after_paymentincludes\class-ctc-chat-button-display.php:189
actionwoocommerce_review_order_before_paymentincludes\class-ctc-chat-button-display.php:193
actionwoocommerce_checkout_after_order_reviewincludes\class-ctc-chat-button-display.php:197
actionwoocommerce_checkout_before_order_reviewincludes\class-ctc-chat-button-display.php:201
actionwoocommerce_review_order_after_submitincludes\class-ctc-chat-button-display.php:205
actionwoocommerce_after_shop_loop_itemincludes\class-ctc-chat-button-display.php:219
actionwoocommerce_after_shop_loop_itemincludes\class-ctc-chat-button-display.php:223
actionwoocommerce_after_shop_loop_item_titleincludes\class-ctc-chat-button-display.php:228
actionwoocommerce_before_shop_loop_item_titleincludes\class-ctc-chat-button-display.php:232
actioninitpublic\class-ctc-chat-public.php:47
actionwp_enqueue_scriptspublic\class-ctc-chat-public.php:50
actionwoocommerce_after_single_productpublic\class-ctc-chat-public.php:53
actionwp_enqueue_scriptspublic\class-ctc-chat-public.php:56
actionwp_enqueue_scriptspublic\class-ctc-chat-public.php:405
actionwp_enqueue_scriptspublic\class-ctc-chat-public.php:416
actionwp_enqueue_scriptspublic\class-ctc-chat-public.php:424
actionwp_enqueue_scriptspublic\class-ctc-chat-public.php:427
Maintenance & Trust

AICOSO Click to Chat and Order Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedJan 22, 2026
PHP min version7.4
Downloads232

Community Trust

Rating100/100
Number of ratings2
Active installs10
Alternatives

AICOSO Click to Chat and Order Alternatives

Click to Chat – HoliThemes

Click to Chat – HoliThemes

click-to-chat-for-whatsapp

A
96

WhatsApp Chat🔥. Let's make your Web page visitors contact you through 'WhatsApp', 'WhatsApp Business'. Add matching Widget✅

700K 3 CVEs
Social Chat – Click To Chat App Button

Social Chat – Click To Chat App Button

wp-whatsapp-chat

A
100

WhatsApp Chat🔥 allows you to enhance customer engagement! Integrate "WhatsApp" or "WhatsApp Business" with a single click.

200K 1 CVE
WP Chat App

WP Chat App

wp-whatsapp

A
97

Integrate WhatsApp experience directly into your WordPress website.

100K 6 CVEs
Contact Form to Chat Apps | Click to Chat to Order – FormyChat

Contact Form to Chat Apps | Click to Chat to Order – FormyChat

social-contact-form

A
100

Connect contact forms and WooCommerce to WhatsApp by live click to chat. Send form data to WhatsApp Business for instant customer engagement

3K No CVEs
ChatHelp – Click to Chat Button, Chat to Order, Floating Chat & Form

ChatHelp – Click to Chat Button, Chat to Order, Floating Chat & Form

chat-help

A
96

Add WhatsApp click to chat with floating chat button, chat to order for WooCommerce, and chat forms to convert visitors into customers.

1K 2 CVEs
Developer Profile

AICOSO Click to Chat and Order Developer Profile

aicoso

3 plugins · 10 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect AICOSO Click to Chat and Order

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/aicoso-click-to-chat/admin/css/admin.css/wp-content/plugins/aicoso-click-to-chat/admin/js/admin.js/wp-content/plugins/aicoso-click-to-chat/assets/css/click-to-chat.css/wp-content/plugins/aicoso-click-to-chat/assets/js/click-to-chat.js
Script Paths
/wp-content/plugins/aicoso-click-to-chat/admin/js/admin.js/wp-content/plugins/aicoso-click-to-chat/assets/js/click-to-chat.js
Version Parameters
aicoso-click-to-chat/admin/css/admin.css?ver=aicoso-click-to-chat/admin/js/admin.js?ver=aicoso-click-to-chat/assets/css/click-to-chat.css?ver=aicoso-click-to-chat/assets/js/click-to-chat.js?ver=

HTML / DOM Fingerprints

CSS Classes
ctc-chat-buttonctc-chat-btn-wrapperctc_chat_noticectc_chat_btn_wrapperctc_chat_single_product_buttonctc_chat_shop_page_buttonctc_chat_cart_page_buttonctc_chat_checkout_page_button+1 more
Data Attributes
data-phone-numberdata-messagedata-product-namedata-product-urldata-product-price
JS Globals
ctc_chat_ajax_object
FAQ

Frequently Asked Questions about AICOSO Click to Chat and Order