Does [凹凸曼]AI知识库 have any unpatched vulnerabilities?

No. All known vulnerabilities in [凹凸曼]AI知识库 have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is [凹凸曼]AI知识库 compatible with WordPress 6.9.4?

According to WordPress.org data, [凹凸曼]AI知识库 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is [凹凸曼]AI知识库 compatible with PHP 7.4+?

[凹凸曼]AI知识库 requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is [凹凸曼]AI知识库 updated?

[凹凸曼]AI知识库 was last updated on Dec 25, 2025. Frequent updates are generally a positive security signal.

What is [凹凸曼]AI知识库's security score?

[凹凸曼]AI知识库 has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

[凹凸曼]AI知识库 Security & Risk Analysis

wordpress.org/plugins/apoyl-aiknowledge

基于腾讯混元大模型、DeepSeek大模型、Moonshot大模型，建立自己知识库，通过一句话生成关联知识库的高质量文章，方便作者一键发布，也为创造提供大量参考内容。

0 active installs v1.0.0 PHP 7.4+ WP 6.0+ Updated Dec 25, 2025

deepseek%e6%b7%b7%e5%85%83%e5%a4%a7%e6%a8%a1%e5%9e%8b

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is [凹凸曼]AI知识库 Safe to Use in 2026?

Generally Safe

Score 100/100

[凹凸曼]AI知识库 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The 'apoyl-aiknowledge' v1.0.0 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices in avoiding dangerous functions, file operations, and external HTTP requests. The majority of its SQL queries utilize prepared statements, and output escaping is generally well-implemented, with a high percentage of outputs being properly escaped. Furthermore, the plugin has no known vulnerability history, indicating a potentially clean codebase in terms of past exploits.

However, a significant concern arises from the presence of one unprotected AJAX handler. This creates a direct entry point into the plugin that could be exploited without authentication, potentially leading to unauthorized actions or information disclosure if this handler performs sensitive operations. While taint analysis shows no unsanitized paths, the unprotected AJAX handler represents a clear and present risk that needs to be addressed.

In conclusion, while the plugin has several strengths, particularly in its avoidance of common vulnerabilities and good SQL and output handling, the single unprotected AJAX endpoint is a critical weakness. The absence of past vulnerabilities is encouraging but does not negate the immediate risk posed by this exposed entry point. Addressing the authentication on the AJAX handler should be a priority to improve the plugin's overall security.

Key Concerns

Unprotected AJAX handler

Vulnerabilities

None known

[凹凸曼]AI知识库 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

[凹凸曼]AI知识库 Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

19 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

67% prepared3 total queries

Output Escaping

90% escaped21 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<setting> (admin\partials\setting.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

[凹凸曼]AI知识库 Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_apoyl_aiknowledge_ajaxincludes\aiknowledge.php:53

WordPress Hooks 3

actionadmin_enqueue_scriptsincludes\aiknowledge.php:49

actionadmin_menuincludes\aiknowledge.php:50

actionadmin_initincludes\aiknowledge.php:52

Maintenance & Trust

[凹凸曼]AI知识库 Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 25, 2025

PHP min version7.4

Downloads303

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

[凹凸曼]AI知识库 Alternatives

Hollisho Integration with DeepSeek for TranslatePress

hollisho-integration-deepseek-for-translatepress

100

为TranslatePress添加DeepSeek AI支持，实现自动化翻译功能。

100 No CVEs

[凹凸曼]AI生成文章

apoyl-aiarticle

100

基于DeepSeek大模型DeepSeek-V3、推理模型DeepSeek-R1、百度大模型ERNIE-4.0、GPT-3.5、GPT-4，通过prompt一句话标题描述智能创造一篇高质量的文章，可智能生成文章、AI一键改写内容、AI一键润色内容，为管理者提供大量参考内容。

30 No CVEs

[凹凸曼]AI自动回复AI自动评论

apoyl-aicomments

100

基于DeepSeek大模型DeepSeek-V3、推理模型DeepSeek-R1、百度大模型，发完文章后，自动实现AI自动跟评论，多马甲随机回复，无需要人工干预自动回复，让平台运营更加活跃。

10 No CVEs

AI Driven Content

holoultek-ai-driven-content

100

Generate high-quality, SEO-friendly content directly in your WordPress editor using AI.

10 No CVEs

[凹凸曼]ChatGPT聊天机器人

apoyl-chatgpt

100

这是一款基于ChatGPT独立对话聊天机器人，支持基于DeepSeek大模型DeepSeek-V3、推理模型DeepSeek-R1、百度大模型、GPT-3.5、GPT-4，通过AI解答用户的疑惑，帮助用户写总结，写小说，写代码等，成为是人们生活中贴心小助手.

0 No CVEs

Developer Profile

[凹凸曼]AI知识库 Developer Profile

apoyl

27 plugins · 710 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect [凹凸曼]AI知识库

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/apoyl-aiknowledge/admin/css/admin.css/wp-content/plugins/apoyl-aiknowledge/admin/js/admin.js

Script Paths

/wp-content/plugins/apoyl-aiknowledge/admin/js/admin.js

Version Parameters

apoyl-aiknowledge/admin/css/admin.css?ver=apoyl-aiknowledge/admin/js/admin.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-nonce="apoyl-aiknowledge-ajax"

JS Globals

apoyl_aiknowledge_params

FAQ