Does Pulsating Chat Button have any unpatched vulnerabilities?

No. All known vulnerabilities in Pulsating Chat Button have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Pulsating Chat Button compatible with WordPress 6.9.4?

According to WordPress.org data, Pulsating Chat Button 1.5.8 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Pulsating Chat Button compatible with PHP 7.0+?

Pulsating Chat Button requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Pulsating Chat Button updated?

Pulsating Chat Button was last updated on Dec 24, 2025. Frequent updates are generally a positive security signal.

What is Pulsating Chat Button's security score?

Pulsating Chat Button has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Pulsating Chat Button Security & Risk Analysis

wordpress.org/plugins/amin-chat-button

WhatsApp or Telegram Chat🔥. Adds a pulsating WhatsApp or Telegram button 🍀 to your website. Fast and easy installation. Setting up target id GTM and Y …

2K active installs v1.5.8 PHP 7.0+ WP 3.0+ Updated Dec 24, 2025

telegramtelegram-chatwhatsappwhatsapp-businesswhatsapp-chat

A · Safe

CVEs total1

Unpatched0

Last CVEDec 3, 2024

Download

Safety Verdict

Is Pulsating Chat Button Safe to Use in 2026?

Generally Safe

Score 99/100

Pulsating Chat Button has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 3, 2024Updated 3mo ago

Risk Assessment

The 'amin-chat-button' v1.5.8 plugin exhibits a mixed security posture. While the static analysis reveals a commendably small attack surface with no exposed AJAX handlers, REST API routes, shortcodes, or cron events without authorization, and a complete absence of dangerous functions or file operations, there are still areas for improvement. The 58% output escaping rate indicates a potential for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not properly sanitized before being displayed. The presence of only one nonce check and one capability check in the code, coupled with a history of Cross-Site Request Forgery (CSRF) vulnerabilities (including a recent one), suggests that authorization and integrity checks might not be consistently applied across all relevant functionalities. Although there are no currently unpatched CVEs, the past existence of a medium-severity vulnerability points to a need for continued vigilance in code development and auditing.

Key Concerns

Output escaping is not consistently applied
Limited number of nonce checks
Limited number of capability checks
Past vulnerability history (CSRF)

Vulnerabilities

Pulsating Chat Button Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-11813medium · 6.1Cross-Site Request Forgery (CSRF)

Pulsating Chat Button <= 1.4.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Dec 3, 2024 Patched in 1.4.2 (58d)

Code Analysis

Analyzed Mar 17, 2026

Pulsating Chat Button Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

67 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

58% escaped116 total outputs

Attack Surface

Pulsating Chat Button Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionadmin_menuchat-button.php:23

actionwp_enqueue_scriptschat-button.php:548

actionadmin_enqueue_scriptschat-button.php:553

actionwp_footerchat-button.php:567

actionwp_headchat-button.php:576

Maintenance & Trust

Pulsating Chat Button Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 24, 2025

PHP min version7.0

Downloads12K

Community Trust

Rating100/100

Number of ratings1

Active installs2K

Alternatives

Pulsating Chat Button Alternatives

Chat Everywhere

chat-everywhere

100

Open a WhatsApp or a Telegram chat just adding a class to any html element!

10 No CVEs

Click to Chat – HoliThemes

click-to-chat-for-whatsapp

WhatsApp Chat🔥. Let's make your Web page visitors contact you through 'WhatsApp', 'WhatsApp Business'. Add matching Widget✅

700K 3 CVEs

Social Chat – Click To Chat App Button

wp-whatsapp-chat

100

WhatsApp Chat🔥 allows you to enhance customer engagement! Integrate "WhatsApp" or "WhatsApp Business" with a single click.

200K 1 CVE

WP Chat App

wp-whatsapp

Integrate WhatsApp experience directly into your WordPress website.

100K 6 CVEs

Simple Chat Button

simple-chat-button

100

WhatsApp Chat Button - Display the beautiful WhatsApp Sticky Button on the WordPress frontend.

40K No CVEs

Developer Profile

Pulsating Chat Button Developer Profile

aminshah74

1 plugin · 2K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

58 days

View full developer profile

Detection Fingerprints

How We Detect Pulsating Chat Button

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/amin-chat-button/assets/css/style.css/wp-content/plugins/amin-chat-button/assets/js/script.js

Script Paths

/wp-content/plugins/amin-chat-button/assets/js/script.js

Version Parameters

amin-chat-button/assets/css/style.css?ver=amin-chat-button/assets/js/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

amin-chat-button

Data Attributes

data-amin-chat-button

JS Globals

window.amin_chat_button_plugin_phone_enwindow.amin_chat_button_plugin_phone_trwindow.amin_chat_button_plugin_phonewindow.amin_chat_button_plugin_phone_link_enwindow.amin_chat_button_plugin_phone_link_trwindow.amin_chat_button_plugin_phone_link+12 more

FAQ