Does AIOHM Knowledge Assistant have any unpatched vulnerabilities?

No. All known vulnerabilities in AIOHM Knowledge Assistant have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AIOHM Knowledge Assistant compatible with WordPress 6.9.4?

According to WordPress.org data, AIOHM Knowledge Assistant 1.5.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is AIOHM Knowledge Assistant compatible with PHP 7.4+?

AIOHM Knowledge Assistant requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is AIOHM Knowledge Assistant updated?

AIOHM Knowledge Assistant was last updated on Dec 18, 2025. Frequent updates are generally a positive security signal.

What is AIOHM Knowledge Assistant's security score?

AIOHM Knowledge Assistant has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AIOHM Knowledge Assistant Security Review

Safety Verdict

Is AIOHM Knowledge Assistant Safe to Use in 2026?

Generally Safe

Score 100/100

AIOHM Knowledge Assistant has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The aiohm-knowledge-assistant plugin v1.5.2 exhibits a generally strong security posture with several positive indicators. Notably, all identified entry points (AJAX handlers, REST API routes, shortcodes, cron events) appear to have proper authentication checks, and the plugin demonstrates excellent output escaping practices, with 100% of outputs being properly escaped. Furthermore, a significant majority of SQL queries (89%) are protected by prepared statements, and the plugin includes a robust number of nonce and capability checks. The absence of any known CVEs or past vulnerabilities also contributes to a favorable security profile.

However, the static analysis does reveal some areas of concern that warrant attention. The presence of 17 taint flows with unsanitized paths, particularly 12 classified as high severity, indicates a potential risk. While no critical severity taint flows were found, these high-severity flows suggest that user-supplied data might be processed in a way that could lead to unintended consequences or vulnerabilities if exploited. The number of file operations (33) and external HTTP requests (10) also represent potential attack vectors, although the analysis doesn't specify if these are handled securely.

In conclusion, while the plugin has implemented many crucial security best practices, the 12 high-severity taint flows with unsanitized paths represent a tangible risk that should be investigated and remediated. The plugin's strong track record and good implementation of core security features are commendable, but a thorough review of these specific taint flows is necessary to ensure complete security.

Key Concerns

High severity unsanitized taint flows

Vulnerabilities

None known

AIOHM Knowledge Assistant Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

AIOHM Knowledge Assistant Code Analysis

Dangerous Functions

0

Raw SQL Queries

18

142 prepared

Unescaped Output

2

557 escaped

Nonce Checks

68

Capability Checks

56

File Operations

33

External Requests

10

Bundled Libraries

0

SQL Query Safety

89% prepared160 total queries

Output Escaping

100% escaped559 total outputs

Data Flows

17 unsanitized

Data Flow Analysis

25 flows17 with unsanitized paths

handle_add_note_to_kb_ajax (includes\core-init.php:2205)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

AIOHM Knowledge Assistant Attack Surface

Entry Points70

Unprotected0

AJAX Handlers 66

noprivwp_ajax_handle_ajax_erroraiohm-knowledge-assistant.php:107

authwp_ajax_handle_ajax_erroraiohm-knowledge-assistant.php:111

authwp_ajax_aiohm_progressive_scanincludes\core-init.php:397

authwp_ajax_aiohm_check_api_keyincludes\core-init.php:398

authwp_ajax_aiohm_save_individual_api_keyincludes\core-init.php:399

authwp_ajax_aiohm_export_kbincludes\core-init.php:400

authwp_ajax_aiohm_reset_kbincludes\core-init.php:401

authwp_ajax_aiohm_toggle_kb_scopeincludes\core-init.php:402

authwp_ajax_aiohm_restore_kbincludes\core-init.php:403

authwp_ajax_aiohm_delete_kb_entryincludes\core-init.php:404

authwp_ajax_aiohm_bulk_delete_kbincludes\core-init.php:405

authwp_ajax_aiohm_bulk_toggle_kb_scopeincludes\core-init.php:406

authwp_ajax_aiohm_save_brand_soulincludes\core-init.php:407

authwp_ajax_aiohm_add_brand_soul_to_kbincludes\core-init.php:408

authwp_ajax_aiohm_add_note_to_kbincludes\core-init.php:409

authwp_ajax_aiohm_save_mirror_mode_settingsincludes\core-init.php:450

authwp_ajax_aiohm_save_muse_mode_settingsincludes\core-init.php:451

authwp_ajax_aiohm_generate_mirror_mode_qaincludes\core-init.php:457

authwp_ajax_aiohm_test_mirror_mode_chatincludes\core-init.php:458

authwp_ajax_aiohm_save_muse_mode_settingsincludes\core-init.php:459

authwp_ajax_aiohm_private_assistant_chatincludes\core-init.php:460

authwp_ajax_aiohm_private_chatincludes\core-init.php:461

authwp_ajax_aiohm_test_muse_mode_chatincludes\core-init.php:462

noprivwp_ajax_aiohm_frontend_chatincludes\core-init.php:463

authwp_ajax_aiohm_frontend_chatincludes\core-init.php:464

noprivwp_ajax_aiohm_search_knowledgeincludes\core-init.php:465

authwp_ajax_aiohm_search_knowledgeincludes\core-init.php:466

authwp_ajax_aiohm_admin_search_knowledgeincludes\core-init.php:467

authwp_ajax_aiohm_get_project_conversationsincludes\core-init.php:470

authwp_ajax_aiohm_create_projectincludes\core-init.php:471

authwp_ajax_aiohm_load_historyincludes\core-init.php:474

authwp_ajax_aiohm_load_conversationincludes\core-init.php:475

authwp_ajax_aiohm_save_project_notesincludes\core-init.php:476

authwp_ajax_aiohm_load_project_notesincludes\core-init.php:477

authwp_ajax_aiohm_delete_projectincludes\core-init.php:478

authwp_ajax_aiohm_delete_conversationincludes\core-init.php:479

authwp_ajax_aiohm_create_conversationincludes\core-init.php:480

authwp_ajax_aiohm_upload_project_filesincludes\core-init.php:481

authwp_ajax_aiohm_get_brand_soul_contentincludes\core-init.php:482

authwp_ajax_aiohm_get_content_for_viewincludes\core-init.php:483

authwp_ajax_aiohm_get_usage_statsincludes\core-init.php:484

authwp_ajax_aiohm_download_conversation_pdfincludes\core-init.php:485

authwp_ajax_aiohm_add_conversation_to_kbincludes\core-init.php:486

authwp_ajax_aiohm_research_onlineincludes\core-init.php:487

authwp_ajax_aiohm_get_pdf_urlincludes\core-init.php:488

authwp_ajax_aiohm_kb_file_uploadincludes\core-init.php:491

authwp_ajax_aiohm_update_json_contentincludes\core-init.php:492

authwp_ajax_aiohm_update_text_contentincludes\core-init.php:493

authwp_ajax_aiohm_reprocess_pdf_contentincludes\core-init.php:494

authwp_ajax_aiohm_reprocess_html_contentincludes\core-init.php:495

authwp_ajax_aiohm_get_debug_infoincludes\core-init.php:498

authwp_ajax_aiohm_test_all_api_connectionsincludes\core-init.php:499

authwp_ajax_aiohm_check_database_healthincludes\core-init.php:500

authwp_ajax_aiohm_submit_support_requestincludes\core-init.php:501

authwp_ajax_aiohm_submit_feature_requestincludes\core-init.php:502

authwp_ajax_aiohm_save_brand_soulincludes\settings-page.php:22

authwp_ajax_aiohm_add_brand_soul_to_kbincludes\settings-page.php:23

authwp_ajax_aiohm_save_settingincludes\settings-page.php:26

authwp_ajax_aiohm_save_settingsincludes\settings-page.php:27

authwp_ajax_aiohm_muse_preview_chatincludes\settings-page.php:30

authwp_ajax_aiohm_save_pro_featuresincludes\settings-page.php:33

authwp_ajax_aiohm_test_ollama_connectionincludes\settings-page.php:34

authwp_ajax_aiohm_generate_qa_pairincludes\shortcode-qa.php:15

noprivwp_ajax_aiohm_generate_qa_pairincludes\shortcode-qa.php:16

authwp_ajax_aiohm_search_knowledgeincludes\shortcode-search.php:17

noprivwp_ajax_aiohm_search_knowledgeincludes\shortcode-search.php:18

Shortcodes 4

[aiohm_chat] includes\shortcode-chat.php:14

[aiohm_private_assistant] includes\shortcode-private-assistant.php:13

[aiohm_qa_generator] includes\shortcode-qa.php:14

[aiohm_search] includes\shortcode-search.php:16

WordPress Hooks 35

filterupload_diraiohm-knowledge-assistant.php:71

actionplugins_loadedaiohm-knowledge-assistant.php:72

actioninitaiohm-knowledge-assistant.php:73

actionwp_enqueue_scriptsaiohm-knowledge-assistant.php:74

actionaiohm_process_file_queueaiohm-knowledge-assistant.php:80

actionaiohm_cleanup_completed_queueaiohm-knowledge-assistant.php:84

filterwp_script_attributesaiohm-knowledge-assistant.php:91

filterheartbeat_settingsaiohm-knowledge-assistant.php:98

actionadmin_enqueue_scriptsaiohm-knowledge-assistant.php:101

actionshutdownaiohm-knowledge-assistant.php:114

actionadmin_initaiohm-knowledge-assistant.php:117

actionafter_uninstallaiohm-knowledge-assistant.php:1838

filteris_pricing_page_visibleaiohm-knowledge-assistant.php:1844

actionadmin_initincludes\core-init.php:388

actionadmin_initincludes\core-init.php:391

actionsend_headersincludes\core-init.php:392

actionwp_loginincludes\core-init.php:393

actionuser_registerincludes\core-init.php:394

actionadmin_initincludes\core-init.php:410

actionupdate_option_aiohm_kb_settingsincludes\core-init.php:455

actiondelete_option_aiohm_kb_settingsincludes\core-init.php:456

filterupload_mimesincludes\core-init.php:507

filterwp_check_filetype_and_extincludes\core-init.php:508

filterupload_mimesincludes\core-init.php:2682

filterupload_mimesincludes\core-init.php:4518

filterwp_check_filetype_and_extincludes\core-init.php:4527

actionshutdownincludes\db-optimizer.php:36

actionwp_loadedincludes\db-optimizer.php:37

actionadmin_enqueue_scriptsincludes\pdf-library-loader.php:54

actionwp_enqueue_scriptsincludes\pdf-library-loader.php:55

actionadmin_menuincludes\settings-page.php:17

actionadmin_initincludes\settings-page.php:18

actionadmin_enqueue_scriptsincludes\settings-page.php:19

actionadmin_post_aiohm_download_brand_soul_pdfincludes\settings-page.php:38

actionadmin_post_aiohm_download_brand_soul_mdincludes\settings-page.php:39

Scheduled Events 2

aiohm_process_file_queue

Maintenance & Trust

AIOHM Knowledge Assistant Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 18, 2025

PHP min version7.4

Downloads598

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

AIOHM Knowledge Assistant Alternatives

Echo Knowledge Base – Documentation, FAQs, Chat & Smart Search

echo-knowledge-base

A

98

A fully featured, easy-to-use documentation plugin with AI chat and search integration. Build beautiful knowledge bases, FAQs, docs, and wikis.

10K 1 CVE

Support Genix – Helpdesk, AI Chatbot, Knowledge Base & Customer Support Ticketing System

support-genix-lite

A

97

Manage customer support with a powerful helpdesk & support ticket system — track customer tickets, resolve, and streamline your support workflow.

1K 3 CVEs

AI Chatbot for WordPress by Customerly

customerly

A

85

AI Chatbot to support customers, create engaging messages and send automated emails.

400 No CVEs

BuddyBot – OpenAI Assistants, AI Chatbots and Support Agents for WordPress

buddybot-ai-custom-ai-assistant-and-chat-agent

A

100

Discover AI Chatbots for WordPress, only plugin built on native OpenAI assistants. Explore a new different way to chat!

100 No CVEs

Zeno – AI-Powered Chatbot

zeno-chatbot-ai

A

100

An AI-powered WordPress automation chatbot plugin that helps you automate support, engage visitors, and answer questions using OpenAI or Google Gemini

60 No CVEs

Developer Profile

AIOHM Knowledge Assistant Developer Profile

Adrian Aparaschivei

1 plugin · 10 total installs

94

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AIOHM Knowledge Assistant

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/aiohm-knowledge-assistant/assets/css/aiohm-pdf-generation.css/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-pdf-generation.js/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-chat.js/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-chat-shortcode.js/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-qa-shortcode.js/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-search-shortcode.js

Script Paths

/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-pdf-generation.js/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-chat.js/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-chat-shortcode.js/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-qa-shortcode.js/wp-content/plugins/aiohm-knowledge-assistant/assets/js/aiohm-search-shortcode.js

Version Parameters

aiohm-knowledge-assistant/assets/css/aiohm-pdf-generation.css?ver=aiohm-knowledge-assistant/assets/js/aiohm-pdf-generation.js?ver=aiohm-knowledge-assistant/assets/js/aiohm-chat.js?ver=aiohm-knowledge-assistant/assets/js/aiohm-chat-shortcode.js?ver=aiohm-knowledge-assistant/assets/js/aiohm-qa-shortcode.js?ver=aiohm-knowledge-assistant/assets/js/aiohm-search-shortcode.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-aiohm-qa-triggerdata-aiohm-qa-iddata-aiohm-chat-triggerdata-aiohm-chat-iddata-aiohm-search-triggerdata-aiohm-search-id

JS Globals

aiohm_qa_shortcode_paramsaiohm_chat_shortcode_paramsaiohm_search_shortcode_params

REST Endpoints

/wp-json/aiohm-knowledge-assistant/v1/search/wp-json/aiohm-knowledge-assistant/v1/chat

Shortcode Output

[aiohm_knowledge_assistant_qa][aiohm_knowledge_assistant_chat][aiohm_knowledge_assistant_search]

FAQ

AIOHM Knowledge Assistant Security & Risk Analysis