[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fOucN6HMv4dUNASUWvtv-CqbfCmjMtbq1vcYA3Jwid-I":3,"$ftShWXVWR0Z1ztYblCvjwXU43IsywNIdv1PNfN0TmuRo":470,"$fxj5DL5RNFg0GShNipPw8QLWsk2Bw1VRvXMgyCL_w30A":474},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"discovery_status":32,"vulnerabilities":33,"developer":114,"crawl_stats":39,"alternatives":118,"analysis":228,"fingerprints":439},"atomchat","Group Chat & Video Chat by AtomChat","1.1.8","Team AtomChat","https:\u002F\u002Fprofiles.wordpress.org\u002Fatomchat\u002F","\u003Ch4>WordPress Chat Plugin\u003C\u002Fh4>\n\u003Cp>User Engagement is an important aspect in retaining users. By engaging your users you make sure that they are captivated and pay attention to your website, thus, preserving user loyalty. User Engagement is also the first step towards monetizing your website and generating revenue. AtomChat is an All In One chat solution which is designed to seamlessly integrate with your WordPress website, and its features allow you to monetize your website easily.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>AtomChat\u003C\u002Fstrong>\u003Cbr \u002F>\n  AtomChat is a standalone application that integrates with WordPress & BuddyPress. You must have an AtomChat account in order to take advantage of this plugin. \u003Ca href=\"https:\u002F\u002Fwww.atomchat.com\u002Fpricing\" title=\"AtomChat Plans\" rel=\"friend nofollow ugc\">Click here to create your account\u003C\u002Fa>.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>AtomChat is a robust Chat Solution that easily integrates with your WordPress website and will keep your community engaged allowing them to communicate and collaborate. They can use features like Text chat, Audio-Video chat, Collaborative tools, Stickers Emojis, Real-time translation, and many more.\u003C\u002Fp>\n\u003Cp>A Power-packed Admin Panel allows you to manage AtomChat and its features. You can further use features like Role-Based Access Control, Credit-Based Billing, and Advertisements to Monetize your Website.\u003C\u002Fp>\n\u003Cp>Let’s take a look at some of AtomChat’s features.\u003C\u002Fp>\n\u003Ch4>Voice, Video & Text Chat\u003C\u002Fh4>\n\u003Cp>AtomChat gives your users the choice to communicate with each other by Text Chat and switch to Video Calls and Conferences for more personalized conversations.\u003C\u002Fp>\n\u003Ch4>Collaboration\u003C\u002Fh4>\n\u003Cp>AtomChat lets your users share files and build on ideas. Not only can they share their screen with other users, but can also sketch their thoughts onto a virtual whiteboard, that too in real-time!\u003C\u002Fp>\n\u003Ch4>Out-of-the-box BuddyPress Support\u003C\u002Fh4>\n\u003Cp>If you are using BuddyPress, AtomChat will automatically show friends in the Contacts tab for a logged-in user!\u003C\u002Fp>\n\u003Ch4>Real-time Translation\u003C\u002Fh4>\n\u003Cp>AtomChat enables your users to connect with one another even if they don’t speak each other’s language. Users can translate their conversations easily and receive all incoming conversations in a language that they are most comfortable with.\u003C\u002Fp>\n\u003Ch4>White-label Mobile & Desktop App\u003C\u002Fh4>\n\u003Cp>Wouldn’t you prefer if your users never left the chat? Our White-label Mobile & Desktop App are designed just for that. With push notifications, we ensure that your users are constantly in touch.\u003C\u002Fp>\n\u003Ch4>Emojis\u002FStickers\u003C\u002Fh4>\n\u003Cp>AtomChat offers a wide range of emojis\u002Fstickers for your users to express themselves better in their conversations.\u003C\u002Fp>\n\u003Ch4>Monetize\u003C\u002Fh4>\n\u003Cp>AtomChat has distinct features dedicated solely towards monetizing your website. Role-Based Access Control and Credit Based Billing can be used together to provide more functionality to your Premium Members (via credits system) compared to your Free Members. The Advertisements feature can be used to integrate ads to the chat window and generate extra revenue.\u003C\u002Fp>\n\u003Ch4>Easy Installation\u003C\u002Fh4>\n\u003Cp>Adding AtomChat to your WordPress site is only a matter of minutes. It seamlessly integrates with WordPress and is supported by all modern browsers.\u003C\u002Fp>\n\u003Ch4>Administration Panel\u003C\u002Fh4>\n\u003Cp>The AtomChat Admin Panel gives you all the power to make use of this plugin the way you want it. With a hoard of options to administer, you take the final call on what you want to provide to your website users.\u003C\u002Fp>\n\u003Ch4>Customize\u003C\u002Fh4>\n\u003Cp>AtomChat gives you access to an Admin Panel, which helps you monitor and control the activity of your users. You can also customize various aspects of AtomChat, right from color to language, whatever suits your website.\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>The AtomChat support team is always there for its customers. If you ever need our help, contact us and we will assist you on priority basis.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>AtomChat\u003C\u002Fstrong>\u003Cbr \u002F>\n  AtomChat is a standalone application that integrates with 100’s of platforms including WordPress & BuddyPress. You must have an AtomChat account in order to take advantage of this plugin. \u003Ca href=\"https:\u002F\u002Fwww.atomchat.com\u002Fpricing\" title=\"AtomChat Plans\" rel=\"friend nofollow ugc\">Click here to create your account\u003C\u002Fa>.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Full Features List\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Real-time Text Messaging\u003C\u002Fli>\n\u003Cli>One-on-one Chat\u003C\u002Fli>\n\u003Cli>Group Chat\u003C\u002Fli>\n\u003Cli>Voice & Video Calling & Conference\u003C\u002Fli>\n\u003Cli>Voice Only Calling & Conference\u003C\u002Fli>\n\u003Cli>Voice & Video Broadcasting\u003C\u002Fli>\n\u003Cli>Real-time Language Translation\u003C\u002Fli>\n\u003Cli>Voice Notes\u003C\u002Fli>\n\u003Cli>File Sharing\u003C\u002Fli>\n\u003Cli>Stickers & Emojis\u003C\u002Fli>\n\u003Cli>Screen Sharing\u003C\u002Fli>\n\u003Cli>Collaborative Whiteboard\u003C\u002Fli>\n\u003Cli>Collaborative Document\u003C\u002Fli>\n\u003Cli>Single Player Games\u003C\u002Fli>\n\u003Cli>Broadcast Message\u003C\u002Fli>\n\u003Cli>Block Users\u003C\u002Fli>\n\u003Cli>Write in Local Language\u003C\u002Fli>\n\u003Cli>Save Conversations Locally\u003C\u002Fli>\n\u003Cli>Location sharing\u003C\u002Fli>\n\u003Cli>Credit Deduction integration with myCred plugin\u003C\u002Fli>\n\u003Cli>User Analytics\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Press & Brand Assets\u003C\u002Fh4>\n\u003Cp>When mentioning AtomChat please know that AtomChat is one word with A and C capital. Please avoid using any variations like: Atomchat, atomchat, or  Atom chat.\u003C\u002Fp>\n\u003Ch3>Notes\u003C\u002Fh3>\n\u003Cp>Terms of service: https:\u002F\u002Fwww.atomchat.com\u002Fterms-of-service\u003Cbr \u002F>\nPrivacy policy: https:\u002F\u002Fwww.atomchat.com\u002Fprivacy-policy\u003C\u002Fp>\n","AtomChat helps you add group chat (or chatrooms), user to user chat, voice & video calling to your WordPress site.",400,34777,92,8,"2026-03-31T08:44:00.000Z","6.9.4","5.0","5.6",[20,21,22,23,24],"buddypress-chat","chatroom","group-chat","user-to-user-chat","wordpress-chat","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.1.8.zip",72,5,1,"2026-03-20 15:17:47","2026-04-16T10:56:18.058Z","no_bundle",[34,61,73,87,99],{"id":35,"url_slug":36,"title":37,"description":38,"plugin_slug":4,"theme_slug":39,"affected_versions":40,"patched_in_version":6,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48,"patch_diff_files":49,"patch_trac_url":39,"research_status":50,"research_verified":51,"research_rounds_completed":52,"research_plan":53,"research_summary":54,"research_vulnerable_code":55,"research_fix_diff":56,"research_exploit_outline":57,"research_model_used":58,"research_started_at":59,"research_completed_at":60,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2026-1253","group-chat-video-chat-by-atomchat-missing-authorization-to-authenticated-subscriber-plugin-options-update","Group Chat & Video Chat by AtomChat \u003C= 1.1.7 - Missing Authorization to Authenticated (Subscriber+) Plugin Options Update","The Group Chat & Video Chat by AtomChat plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'atomchat_update_auth_ajax' and 'atomchat_update_layout_ajax' functions in all versions up to, and including, 1.1.7 This makes it possible for authenticated attackers, with Subscriber-level access and above, to update plugin options, including critical settings such as API keys, authentication keys, and layout configurations.",null,"\u003C=1.1.7","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2026-04-27 17:40:02",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F5c2980c3-0038-42ab-8751-72c40921477a?source=api-prod",38,[],"researched",false,3,"# Exploitation Research Plan: CVE-2026-1253 (AtomChat Missing Authorization)\n\n## 1. Vulnerability Summary\nThe **Group Chat & Video Chat by AtomChat** plugin (\u003C= 1.1.7) for WordPress contains a missing authorization vulnerability in its AJAX handlers. Specifically, the functions `atomchat_update_auth_ajax` and `atomchat_update_layout_ajax` fail to perform capability checks (such as `current_user_can('manage_options')`) before updating sensitive plugin settings in the WordPress `wp_options` table. This allows any authenticated user, including those with low-privilege Subscriber-level access, to modify critical configuration data such as API keys and layout settings.\n\n## 2. Attack Vector Analysis\n- **Endpoint:** `\u002Fwp-admin\u002Fadmin-ajax.php`\n- **Actions:** `atomchat_update_auth_ajax` and `atomchat_update_layout_ajax`\n- **Authentication:** Authenticated user required (Subscriber or higher).\n- **HTTP Method:** POST\n- **Vulnerable Parameters (Inferred):** \n    - For `atomchat_update_auth_ajax`: `api_key`, `auth_key`.\n    - For `atomchat_update_layout_ajax`: `layout`, `color_theme`, or serialized configuration arrays.\n- **Preconditions:** The plugin must be active. The attacker must have valid credentials for a Subscriber account.\n\n## 3. Code Flow\n1. **Entry Point:** A POST request is sent to `admin-ajax.php` with the parameter `action=atomchat_update_auth_ajax`.\n2. **Hook Execution:** WordPress triggers the hook `add_action('wp_ajax_atomchat_update_auth_ajax', 'atomchat_update_auth_ajax')`.\n3. **Vulnerable Function:** The `atomchat_update_auth_ajax` function is called.\n4. **Missing Check:** The function likely performs a nonce check (if any) but fails to call `current_user_can()`.\n5. **Data Sink:** The function takes values from `$_POST` (e.g., `$_POST['api_key']`) and passes them directly to `update_option('atomchat_api_key', ...)` or a similar storage function.\n\n## 4. Nonce Acquisition Strategy\nThe plugin likely localizes a nonce for its AJAX operations to ensure the chat widget or admin dashboard functions correctly.\n\n1. **Shortcode Identification:** The plugin typically uses a shortcode like `[atomchat]` to render the chat interface on the frontend.\n2. **Setup:**\n   - Create a page containing the shortcode: `wp post create --post_type=page --post_status=publish --post_content='[atomchat]' --post_title='Chat Page'`\n3. **Extraction:**\n   - Navigate to the newly created page as the Subscriber user.\n   - The plugin likely uses `wp_localize_script`. Use `browser_eval` to inspect common global variables.\n   - **Target Variable (Inferred):** `atomchat_vars` or `atomchat_settings`.\n   - **Execution Command:** `browser_eval(\"window.atomchat_vars?.nonce\")` or `browser_eval(\"window.atomchat_settings?.ajax_nonce\")`.\n4. **Bypass Potential:** If the nonce is checked using `check_ajax_referer` with the action `-1` or a generic string exposed to all users, the Subscriber can easily obtain it. If the check is missing entirely, no acquisition is needed.\n\n## 5. Exploitation Strategy\nThe goal is to overwrite the AtomChat API key to disable the service or redirect chat traffic.\n\n**Request 1: Update API Keys**\n- **Method:** POST\n- **URL:** `http:\u002F\u002F\u003Ctarget>\u002Fwp-admin\u002Fadmin-ajax.php`\n- **Headers:** `Content-Type: application\u002Fx-www-form-urlencoded`\n- **Body:**\n  ```\n  action=atomchat_update_auth_ajax&api_key=EXPLOITED_API_KEY&auth_key=EXPLOITED_AUTH_KEY&nonce=[EXTRACTED_NONCE]\n  ```\n\n**Request 2: Update Layout Settings**\n- **Method:** POST\n- **URL:** `http:\u002F\u002F\u003Ctarget>\u002Fwp-admin\u002Fadmin-ajax.php`\n- **Body:**\n  ```\n  action=atomchat_update_layout_ajax&layout=0&nonce=[EXTRACTED_NONCE]\n  ```\n  *(Note: Parameter names like `api_key` and `layout` are inferred based on the vulnerability description and standard plugin naming conventions).*\n\n## 6. Test Data Setup\n1. **Install Plugin:** Ensure `atomchat` version 1.1.7 is installed and active.\n2. **Create Attacker User:**\n   - `wp user create attacker attacker@example.com --role=subscriber --user_pass=password123`\n3. **Initialize Plugin Options:**\n   - `wp option update atomchat_api_key \"ORIGINAL_KEY\"`\n   - `wp option update atomchat_auth_key \"ORIGINAL_AUTH\"`\n4. **Prepare Nonce Page:**\n   - `wp post create --post_type=page --post_status=publish --post_content='[atomchat]'`\n\n## 7. Expected Results\n- **HTTP Response:** The server should return a `200 OK` or a JSON success message (e.g., `{\"success\":true}`).\n- **Database State:** The values for the targeted options in the `wp_options` table should change from the \"ORIGINAL\" values to the \"EXPLOITED\" values.\n\n## 8. Verification Steps\nAfter sending the HTTP requests, verify the modification via WP-CLI:\n\n1. **Verify Auth Keys:**\n   - `wp option get atomchat_api_key` \n   - *Expected:* `EXPLOITED_API_KEY`\n2. **Verify Auth Key (Alternative Name):**\n   - `wp option get atomchat_settings` (if stored in an array)\n3. **Check for Unauthorized Access Log:** If the plugin logs updates, verify the log shows the Subscriber user ID performing the update.\n\n## 9. Alternative Approaches\nIf the inferred parameter names (`api_key`, `auth_key`) are incorrect:\n1. **Source Code Inspection:** Use `grep -r \"update_option\" wp-content\u002Fplugins\u002Fatomchat\u002F` to find the exact option names being updated within the `atomchat_update_auth_ajax` function.\n2. **General Option Update:** Check if the functions accept a serialized array of all settings, allowing for a bulk overwrite of all plugin configurations.\n3. **XSS Path:** If the `atomchat_update_layout_ajax` function allows updating a setting that is later rendered unescaped on the frontend or admin area, this Missing Authorization vulnerability could be escalated to Stored Cross-Site Scripting (XSS).","The Group Chat & Video Chat by AtomChat plugin for WordPress is vulnerable to unauthorized modification of settings due to missing capability checks in its AJAX handlers. Authenticated users, such as Subscribers, can exploit this to overwrite critical plugin options including API keys, authentication keys, and layout configurations.","\u002F\u002F File: atomchat.php (or associated settings handler)\n\nadd_action('wp_ajax_atomchat_update_auth_ajax', 'atomchat_update_auth_ajax');\nadd_action('wp_ajax_atomchat_update_layout_ajax', 'atomchat_update_layout_ajax');\n\nfunction atomchat_update_auth_ajax() {\n    \u002F\u002F Vulnerability: No current_user_can('manage_options') check\n    $api_key = $_POST['api_key'];\n    $auth_key = $_POST['auth_key'];\n\n    update_option('atomchat_api_key', $api_key);\n    update_option('atomchat_auth_key', $auth_key);\n\n    wp_send_json_success();\n}\n\n---\n\nfunction atomchat_update_layout_ajax() {\n    \u002F\u002F Vulnerability: No current_user_can('manage_options') check\n    $layout = $_POST['layout'];\n\n    update_option('atomchat_layout', $layout);\n\n    wp_send_json_success();\n}","--- a\u002Fatomchat\u002Fatomchat.php\n+++ b\u002Fatomchat\u002Fatomchat.php\n@@ -1,6 +1,9 @@\n function atomchat_update_auth_ajax() {\n+    if (!current_user_can('manage_options')) {\n+        wp_send_json_error('Unauthorized', 403);\n+    }\n     check_ajax_referer('atomchat_nonce', 'nonce');\n     \n     $api_key = sanitize_text_field($_POST['api_key']);\n@@ -10,6 +13,9 @@\n }\n \n function atomchat_update_layout_ajax() {\n+    if (!current_user_can('manage_options')) {\n+        wp_send_json_error('Unauthorized', 403);\n+    }\n     check_ajax_referer('atomchat_nonce', 'nonce');\n \n     $layout = sanitize_text_field($_POST['layout']);","1. Authenticate to the WordPress site as a Subscriber-level user.\n2. Locate the AJAX nonce used by AtomChat by visiting a page where the chat is active (e.g., a page containing the [atomchat] shortcode) and inspecting global JavaScript variables like `atomchat_vars` or `atomchat_settings`.\n3. Send a POST request to `\u002Fwp-admin\u002Fadmin-ajax.php` with the following parameters:\n    - `action`: `atomchat_update_auth_ajax`\n    - `api_key`: A malicious or dummy API key string\n    - `auth_key`: A malicious or dummy Auth key string\n    - `nonce`: The extracted nonce value\n4. Alternatively, use `action=atomchat_update_layout_ajax` with a `layout` parameter to disrupt the site's chat interface layout.\n5. Verify that the settings in the `wp_options` table (e.g., `atomchat_api_key`) have been updated to the values provided in the exploit payload.","gemini-3-flash-preview","2026-04-18 00:44:49","2026-04-18 00:45:07",{"id":62,"url_slug":63,"title":64,"description":65,"plugin_slug":4,"theme_slug":39,"affected_versions":40,"patched_in_version":6,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":66,"updated_date":67,"references":68,"days_to_patch":70,"patch_diff_files":71,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":72,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2025-31831","atomchat-missing-authorization","AtomChat \u003C= 1.1.7 - Missing Authorization","The Group Chat & Video Chat by AtomChat plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.1.7. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform an unauthorized action.","2025-04-01 00:00:00","2026-04-15 13:28:18",[69],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F70c38363-4648-4668-bb32-14351ed7fd07?source=api-prod",380,[],0,{"id":74,"url_slug":75,"title":76,"description":77,"plugin_slug":4,"theme_slug":39,"affected_versions":78,"patched_in_version":39,"severity":41,"cvss_score":79,"cvss_vector":80,"vuln_type":81,"published_date":82,"updated_date":83,"references":84,"days_to_patch":39,"patch_diff_files":86,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":72,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2025-31532","atomchat-authenticated-contributor-stored-cross-site-scripting","AtomChat \u003C= 1.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting","The AtomChat plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.","\u003C=1.1.6",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-03-31 00:00:00","2025-04-08 14:09:32",[85],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F4d73cc31-f65d-4df3-a14e-8ec2839d5bf2?source=api-prod",[],{"id":88,"url_slug":89,"title":90,"description":91,"plugin_slug":4,"theme_slug":39,"affected_versions":92,"patched_in_version":93,"severity":41,"cvss_score":79,"cvss_vector":80,"vuln_type":81,"published_date":94,"updated_date":95,"references":96,"days_to_patch":29,"patch_diff_files":98,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":72,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2024-10232","atomchat-authenticated-contributor-stored-cross-site-scripting-via-atomchat-shortcode","AtomChat \u003C= 1.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via atomchat Shortcode","The Group Chat & Video Chat by AtomChat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's atomchat shortcode in all versions up to, and including, 1.1.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.","\u003C=1.1.5","1.1.6","2024-10-31 20:30:52","2024-11-01 09:29:24",[97],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc10993bd-b4f3-44b6-bb0f-cb783dbcf314?source=api-prod",[],{"id":100,"url_slug":101,"title":102,"description":103,"plugin_slug":4,"theme_slug":39,"affected_versions":104,"patched_in_version":105,"severity":41,"cvss_score":106,"cvss_vector":107,"vuln_type":44,"published_date":108,"updated_date":109,"references":110,"days_to_patch":112,"patch_diff_files":113,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":72,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2023-46606","atomchat-missing-authorization-via-credits-rest-api-endpoint","AtomChat \u003C= 1.1.4 - Missing Authorization via credits REST API Endpoint","The AtomChat plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'credits' REST API function in versions up to, and including, 1.1.4. This makes it possible for unauthenticated attackers to manipulate user credits when the myCred plugin is installed.","\u003C=1.1.4","1.1.5",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","2023-10-24 00:00:00","2024-10-30 17:50:07",[111],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F21f917a4-efee-421b-98b1-a9b18c7527d2?source=api-prod",373,[],{"slug":4,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":115,"trust_score":116,"computed_at":117},198,59,"2026-05-20T02:52:17.473Z",[119,142,163,183,206],{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":129,"num_ratings":130,"last_updated":131,"tested_up_to":16,"requires_at_least":132,"requires_php":133,"tags":134,"homepage":138,"download_link":139,"security_score":140,"vuln_count":52,"unpatched_count":72,"last_vuln_date":141,"fetched_at":31},"rumbletalk-chat-a-chat-with-themes","RumbleTalk Live Group Chat – HTML5","6.4.0","RumbleTalk","https:\u002F\u002Fprofiles.wordpress.org\u002Frumbletalk\u002F","\u003Ch4>WordPress Group Chat Plugin\u003C\u002Fh4>\n\u003Cp>Live group chat plugin for WordPress. Integrate it into your website in minutes. Create one or multiple rooms effortlessly.\u003C\u002Fp>\n\u003Cp>We support 4 chat types:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Members-only group chat – Integrated with your user base.\u003C\u002Fli>\n\u003Cli>Queued chat – Admins approve every message.\u003C\u002Fli>\n\u003Cli>Social chat – Open chat room for online discussions.\u003C\u002Fli>\n\u003Cli>Experts chat – One-on-one chats (private chats).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>797,100 websites and online events are already using the \u003Ca href=\"https:\u002F\u002Frumbletalk.com\u002F\" rel=\"nofollow ugc\">RumbleTalk HTML Chat Platform\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The chat platform is a hosted professional \u003Cstrong>chat room plugin\u003C\u002Fstrong> with a quick integration to your WordPress members’ user base.\u003Cbr \u002F>\nYou may add it to any type of website, blog, or real-time event.\u003C\u002Fp>\n\u003Cp>Unique features that can be set in the admin panel:\u003C\u002Fp>\n\u003Cp>1) Integrate your users base with one click – your website members will then auto-login to the chat.\u003Cbr \u002F>\n2) Moderated chat mode for live events – approve every message before showing it to all.\u003Cbr \u002F>\n3) Private video and audio calls for private one-on-one video discussions\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F70_zc1fvUtM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>The ideal plugin for members chat, live online events, Group chats, live community, radio shows, fans clubs, stocks & forex trading, hobbies, sports, group discussions…and much more\u003C\u002Fp>\n\u003Ch3>Plug-in Name\u003C\u002Fh3>\n\u003Cp>rumbletalk-chat-a-chat-with-themes\u003C\u002Fp>\n\u003Ch3>WHAT IS A LIVE GROUP CHAT FOR WORDPRESS?\u003C\u002Fh3>\n\u003Cp>RumbleTalk platform is easy to set group chat plugin for WordPress, buddypress and bbpress\u003Cbr \u002F>\n1) Members-only website\u003Cbr \u002F>\n2) Social website\u003Cbr \u002F>\n3) Live online event website\u003Cbr \u002F>\n4) Integrated into any platform using our REST API.\u003C\u002Fp>\n\u003Cp>Adding one or many rooms is a no-brainer with the RumbleTalk plugin. Add a chat widget to your website in two minutes.\u003C\u002Fp>\n\u003Ch4>BuddyPress & BBpress Integration\u003C\u002Fh4>\n\u003Cp>This group chat plugin supports automatic user base integration with WordPress, BuddyPress and BBpress.\u003C\u002Fp>\n\u003Ch3>Chat Features\u003C\u002Fh3>\n\u003Cpre>\n\nNEW - Pin messages, files and videos\n\n* Poll options in the chat\n* Bio Description can be added in the username (ex: display name+bio)\n* Admin count in plan summary added\n* Admin button is added for easy access\n\n* support for avatar integration with different members' plugins.\n* Integration with WordPress users base avatar\n* Mark text as bold, italic, strike and code.\n* Admin mode - mute all users.\n* New lines - now you can add more lines in each message\n* Font size - increase\u002Fdecrease the web-based font size\n* Private chat - prevents automatic private chat window popup   \n\n* support for more currencies\n* Paid access, bug fixes\n* Experts chat, allows you to advice in a private conversation (with or without payment)\n* Control what username will show in the chat\n* Keywords feature - automatic text highlights\n* login type: Register before logging in\n\n* Better Sound Control\n* History search options\n* Export chat history to CSV or HTML\n* Video chat messages, record 30-second video messages.\n* Mobile video calls (android)\n* Set Private chats with registered users\n* Spam Filter applied also for users name\n* Create additional rooms directly from the plugin\n* Open settings from the WordPress admin\n* Delete Archive messages directly from the chat\n* Increase Font Size in mobile\n\n* Full Screen In mobile mode\n* Admin user avatar\n* BuddyPress integration\n* Export Chat Transcript from the chat interface\n* Auto login with your own users-base users name (API)\n* IP info\n\n* Upload Images from your mobile device\n* Take photos from your mobile version\n* One on One VIDEO and Audio calls\n* Upload Docs, Excel, PowerPoint, PDF files\n* Upload Images from your own PC\n\n* Take pictures from your PC camera\n* Easily Embed a group chat in your site.\n* Chatroom Theme Library\n* Talk from Mobile and Tablet.\n* Login, Share and Invite\n* Private chat\n\n* SSL - new secure channel TLS1.2\n* Design your own chat theme.\n* Design your chat with css (for advanced users)\n* Manage more than one chat.\n* Spam filter (create a black listed words).\n* Disconnect Trolls.\n\n* Ban users by IP.\n* Define moderators and rolls.\n* Archive your chat, Save log of your chat history.\n* Chat in 30 languages.\n* Offline Mode\n* Delete single messages\n* Flood control\n* Control the side of the floating icon\n* Advanced dashboard for managing your chat rooms\n* Send audio and video messages\n* Set your own sound for different types of actions\n* In-Chat payment options\n\n\u003C\u002Fpre>\n\u003Cp>BuddyPress Chat Room Integration\u003Cbr \u002F>\nThese members chat plugin supports automatic integration with BuddyPress plugin.\u003C\u002Fp>\n\u003Ch3>Languages\u003C\u002Fh3>\n\u003Cpre>\nEnglish, Español, Bahasa Indonesia, Català, Czech, Dansk sprog\nDeutsch, Français, Italiano, Magyar, فارسی, Nederlands, Dutch, Polski\nPortuguês, Română, ภาษาไทย, Slovenčina, Suomi, Svenska, Tiếng Việt\nTürkçe, ελληνικά, Български, Македонски, Русский язык\nСрбски, Українська, עברית , عربي\n\u003C\u002Fpre>\n","Live group chat plugin for WordPress. Integrate it into your website in minutes. Create one or multiple rooms effortlessly.",800,207827,68,21,"2026-03-29T11:07:00.000Z","3.6","5.2.0",[20,135,136,22,137],"chat-room","community-chat","members-chat","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frumbletalk-chat-a-chat-with-themes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frumbletalk-chat-a-chat-with-themes.6.4.0.zip",96,"2025-09-03 00:00:00",{"slug":143,"name":144,"version":93,"author":145,"author_profile":146,"description":147,"short_description":148,"active_installs":127,"downloaded":149,"rating":150,"num_ratings":28,"last_updated":151,"tested_up_to":16,"requires_at_least":152,"requires_php":153,"tags":154,"homepage":158,"download_link":159,"security_score":160,"vuln_count":161,"unpatched_count":29,"last_vuln_date":162,"fetched_at":31},"wpguppy-lite","One to one user Chat by WPGuppy","AmentoTech Private Limited","https:\u002F\u002Fprofiles.wordpress.org\u002Famentotechpvtltd\u002F","\u003Cp>WPGuppy is a well thought and clinically designed and developed WordPress chat plugin which has been engineered to fulfill the market needs. It is loaded with features without compromising on quality.\u003C\u002Fp>\n\u003Cp>WPGuppy is not just a simple WordPress chat plugin – it is a comprehensive chat solution entailing features that are hard to find in a single WordPress chat plugin.\u003C\u002Fp>\n\u003Cp>It is a comprehensive feature-rich WordPress chat plugin that not only provides numerous practical features for end-users but has been designed and developed keeping in mind the high-quality standards that subsequently provide the much-needed robustness and working performance in such plugins.\u003C\u002Fp>\n\u003Cp>This plugin prides itself on using its built-in database which means that it will be integrated within your WordPress site database and you get to keep complete control on how you manage your data etc.\u003C\u002Fp>\n\u003Cp>The team behind this plugin consists of experienced and professional software engineers and web designers who back this plugin with excellent customer support.\u003C\u002Fp>\n\u003Ch3>Enable PHP HTTP Authorization Header\u003C\u002Fh3>\n\u003Ch4>Shared Hosts\u003C\u002Fh4>\n\u003Cp>Most shared hosts have disabled the \u003Cstrong>HTTP Authorization Header\u003C\u002Fstrong> by default.\u003C\u002Fp>\n\u003Cp>To enable this option you’ll need to edit your \u003Cstrong>.htaccess\u003C\u002Fstrong> file by adding the following:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>RewriteEngine on\nRewriteCond %{HTTP:Authorization} ^(.*)\nRewriteRule ^(.*) - [E=HTTP_AUTHORIZATION:%1]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>WPEngine\u003C\u002Fh4>\n\u003Cp>To enable this option you’ll need to edit your \u003Cstrong>.htaccess\u003C\u002Fstrong> file by adding the following:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>SetEnvIf Authorization \"(.*)\" HTTP_AUTHORIZATION=$1\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>What’s new in WP Guppy Pro\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>** BudyPress & BudyBoss Integration **\u003C\u002Fli>\n\u003Cli>** Post base chat **\u003C\u002Fli>\n\u003Cli>** Start chat on the WooCommerce shop page **\u003C\u002Fli>\n\u003Cli>Emoji sharing\u003C\u002Fli>\n\u003Cli>** Voice note **\u003C\u002Fli>\n\u003Cli>** Group chat with friends **\u003C\u002Fli>\n\u003Cli>Create group\u003C\u002Fli>\n\u003Cli>Delete group\u003C\u002Fli>\n\u003Cli>Upload group avatar\u003C\u002Fli>\n\u003Cli>Leave group\u003C\u002Fli>\n\u003Cli>Share video files\u003C\u002Fli>\n\u003Cli>Share documents\u003C\u002Fli>\n\u003Cli>Share gallery or single images\u003C\u002Fli>\n\u003Cli>Send audio files\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hot:\u003C\u002Fstrong> Send current location with open street maps\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hot:\u003C\u002Fstrong> Reply to a message\u003C\u002Fli>\n\u003Cli>Delete a message from a chat\u003C\u002Fli>\n\u003Cli>Download attachments\u003C\u002Fli>\n\u003Cli>Real-time chat with pusher.com Channel API, Vue.js, and Vuex\u003C\u002Fli>\n\u003Cli>Real-time chat with node.js and socket.io. Your server should support node.js for this to activate the real-time experience\u003C\u002Fli>\n\u003Cli>All WordPress users listed by roles\u003C\u002Fli>\n\u003Cli>Media and attachment listing in the chat sidebar\u003C\u002Fli>\n\u003Cli>User profile management\u003C\u002Fli>\n\u003Cli>Reset the database with a single click from the back-end\u003C\u002Fli>\n\u003Cli>Settings for the default tab to activate\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable tabs for the user, chats, friends, blocked\u003C\u002Fli>\n\u003Cli>Dynamic color schemes\u003C\u002Fli>\n\u003Cli>Media extensions to upload settings\u003C\u002Fli>\n\u003Cli>Mute bell sound for notifications\u003C\u002Fli>\n\u003Cli>Report user via email\u003C\u002Fli>\n\u003Cli>All media attachments download from a conversation\u003C\u002Fli>\n\u003Cli>Clear conversation\u003C\u002Fli>\n\u003Cli>RTL support\u003C\u002Fli>\n\u003Cli>Much more features, \u003Ca href=\"https:\u002F\u002Fcodecanyon.net\u002Fitem\u002Fwpguppy-a-live-chat-plugin-for-wordpress\u002F34619534\" rel=\"nofollow ugc\">click here to check all the features\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","WPGuppy is a well thought and clinically designed and developed WordPress chat plugin which has been engineered to fulfill the market needs.",24344,84,"2026-03-12T05:33:00.000Z","6.0","8.1",[155,22,156,23,157],"chat","real-time-chat","video-chat","https:\u002F\u002Fwp-guppy.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpguppy-lite.zip",57,6,"2026-02-13 18:16:35",{"slug":164,"name":165,"version":166,"author":167,"author_profile":168,"description":169,"short_description":170,"active_installs":171,"downloaded":172,"rating":173,"num_ratings":174,"last_updated":175,"tested_up_to":16,"requires_at_least":176,"requires_php":25,"tags":177,"homepage":180,"download_link":181,"security_score":182,"vuln_count":72,"unpatched_count":72,"last_vuln_date":39,"fetched_at":31},"minnit-chat","Group chat for WordPress – Minnit Chat","4.1.4","minnitchat","https:\u002F\u002Fprofiles.wordpress.org\u002Fminnitchat\u002F","\u003Cp>Minnit Chat is an easy-to-use group chat service. You can appoint moderators to watch over your chat, customize the look and feel of your chat, and increase engagement by having your users be able to talk to one another in real time!\u003C\u002Fp>\n\u003Cp>Configure the chatroom to use Single Sign-On, and users who load the chat will automatically be logged in using their WordPress accounts. No need for additional sign-ups, onboarding, or any other steps — your users can get chatting right away!\u003C\u002Fp>\n\u003Cp>Many other features can be enabled or disabled, including support for sending GIFs, uploading files, direct messaging between users, and more.\u003C\u002Fp>\n\u003Cp>Get started in minutes and get chatting with Minnit!\u003C\u002Fp>\n","Cloud-based chat using your WordPress accounts. Minnit uses SSO to allow you and your WordPress users to communicate with one another.",600,36154,80,7,"2026-03-11T23:32:00.000Z","3.4",[155,178,179,21,22],"chat-group","chatbox","https:\u002F\u002Fminnit.chat","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fminnit-chat.zip",100,{"slug":184,"name":185,"version":186,"author":187,"author_profile":188,"description":189,"short_description":190,"active_installs":191,"downloaded":192,"rating":193,"num_ratings":194,"last_updated":195,"tested_up_to":196,"requires_at_least":197,"requires_php":25,"tags":198,"homepage":203,"download_link":204,"security_score":150,"vuln_count":29,"unpatched_count":72,"last_vuln_date":205,"fetched_at":31},"jivochat","JivoChat Live Chat – WP live chat plugin for WordPress","1.3.6.1","JivoChat","https:\u002F\u002Fprofiles.wordpress.org\u002Fjivochat\u002F","\u003Ch4>Omnichannel live chat tailored for e-commerce\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.jivochat.com?utm_source=wordpress\" rel=\"nofollow ugc\">JivoChat\u003C\u002Fa> is an all-in-one business messenger that is optimized for WordPress which teams use to talk to customers everywhere: live chat, phone, email, and social. JivoChat allows you to serve efficient customer support to your clients, thereby increasing your conversion and sales. Customize and configure freely, get the most out of it by reflecting your style and strategy.\u003C\u002Fp>\n\u003Ch3>Top Benefits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Connect all of your communication channels and handle it from a single app efficiently\u003C\u002Fli>\n\u003Cli>Engage with your visitors in real-time and convert them to paying customers\u003C\u002Fli>\n\u003Cli>Manage your customers efficiently with in-app CRM as a team or connect your favorite CRM easily\u003C\u002Fli>\n\u003Cli>Offer calls to your visitors via live chat widget and\u002For connect your phone number to make\u002Freceive calls via Jivo\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"640\" height=\"360\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F7-ynWBqYDDc?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Social Proof\u003C\u002Fh3>\n\u003Cp>Trusted by more than 290.000 users, it is the most popular live chat solution in the market. It works at every device smoothly! Use JivoChat and have your chat widget for your WordPress website, position it wherever you want, customize and configure freely, demonstrate your value effectively, and solve issues of your clients efficiently. Turn your visitors into happy customers now!\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>“JivoChat has proven itself as a simple and very effective way to drive up user engagement, optimize customer support, and increase conversions. Implementing takes less than 10 seconds, but the benefits seem to continue growing forever. We’re delighted to recommend JivoChat to all our clients – we know they’ll love it just as much as we”\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>Eddie Daniels | Managing Director, BouncyCastle Network\u003C\u002Fp>\n\u003Ch4>Ask for a demo & get support\u003C\u002Fh4>\n\u003Cp>Try us for 14 days, you won’t regret it. Our support is 24\u002F7 and the most helpful you can find around, so please don’t hesitate to \u003Ca href=\"https:\u002F\u002Fjivochat.com?utm_source=wordpress\" rel=\"nofollow ugc\">reach us\u003C\u002Fa>. We can offer you a product tour, answer your questions, and make you sure about choosing us.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Omnichannel\u003C\u002Fstrong>: Send and receive client communications through Facebook Messenger, WhatsApp, Apple Business Chat, Telegram, your support e-mail address, and even your phone! All inquiries are in one place to be handled.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Offline Messages\u003C\u002Fstrong>: Are you not available 24\u002F7? It is perfectly fine, inquiries will be on hold at your inbox and you can reach clients afterward given that they leave their e-mail address on a contact form.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Callbacks\u003C\u002Fstrong>: Offer your visitors a call when chat is not enough. They can type their phone number and request a call, which you can make from our app conveniently.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Power and Variety of Apps\u003C\u002Fstrong>: JivoChat offers powerful desktop and mobile apps and a web-based app that you can reach via your favorite browser.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Multi-agent Chats\u003C\u002Fstrong>: Transfer chats to your colleagues or invite them to participate in open support chats with customers.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Visitor Monitoring & Smart Triggers\u003C\u002Fstrong>: Track your visitors in real-time and proactively initiate live chats with them upon conditions you’ve set.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Built-in CRM\u003C\u002Fstrong>: Jivo offers a simple CRM in the app that allows you to track statuses with your clients, attach comments to them, and funnel them.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Unlimited Archive\u003C\u002Fstrong>: All visitors and all of your conversations are stored without a limit. Conversation history with a client automatically loads when you chat again.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Team Chats\u003C\u002Fstrong>: Do you use apps to communicate as a team? You won’t need them anymore, we offer an efficient and powerful team chat feature at our app. All messages at one place!\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Reminders\u003C\u002Fstrong>: Set a reminder for you or one of your colleagues to perform future actions on a specific conversation with a customer.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Geo-IP Based Behaviors\u003C\u002Fstrong>: With our Regions feature, you can show a customized widget for different cities or countries. With a different language, behavior, or set of agents.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Automatic Translator\u003C\u002Fstrong>: Forget the language barriers, Jivo will automatically translate your live chat in both directions with foreign-language speakers instantly and accurately.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Quick Phrases & Canned Responses\u003C\u002Fstrong>: Create predefined messages and send them by using hotkeys, get suggestions from messages you’ve sent before.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Typing Insights\u003C\u002Fstrong>: See the messages that visitors live typing before they hit “send.”\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>GDPR Compliance\u003C\u002Fstrong>: JivoChat fully complies with GDPR requirements.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>CRM Integrations, API & Webhooks\u003C\u002Fstrong>: Are you looking for a powerful arsenal to let you extend boundaries? JivoChat offers a powerful set of solutions for you then. You can have a live chat widget where you want with our Webhooks API, change the behavior of the widget with JS API, and integrate your CRM with Webhooks.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Quick Site Load Time\u003C\u002Fstrong>: Don’t worry about your loading time: Jivo scripts are loaded asynchronously.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Help\u003C\u002Fh3>\n\u003Cp>We have 24\u002F7 live support! In case you need instructions, you can visit our \u003Ca href=\"https:\u002F\u002Fwww.jivochat.com\u002Fhelp\u002Finstallation\u002Fhow-to-install-on-wordpress.html?utm_source=wordpress\" rel=\"nofollow ugc\">knowledge base\u003C\u002Fa>. You can ask your questions to our support at our knowledge base via JivoChat Live Chat widget.\u003C\u002Fp>\n\u003Ch4>Supported languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English \u002F English Live Chat Plugin\u003C\u002Fli>\n\u003Cli>Russian \u002F Русский плагин живого чата\u003C\u002Fli>\n\u003Cli>Spanish \u002F Español Complemento de Chat en Vivo\u003C\u002Fli>\n\u003Cli>Brazilian Portuguese \u002F Português do Brasil Plugin de Chat ao Vivo\u003C\u002Fli>\n\u003Cli>Turkish \u002F Türkçe canlı destek eklentisi\u003C\u002Fli>\n\u003Cli>Indonesian \u002F Bahasa Indonesia live chat plugin\u003C\u002Fli>\n\u003Cli>German \u002F Deutsch Live Chat Unterstützung Plugin\u003C\u002Fli>\n\u003Cli>French \u002F Français Plugin de Chat en Direct\u003C\u002Fli>\n\u003Cli>Dutch \u002F Nederlands Live Chat Plug-in\u003C\u002Fli>\n\u003Cli>Italian \u002F Italiano Supporto Plug-in Live Chat\u003C\u002Fli>\n\u003Cli>Japanese \u002F 日本語 ライブチャットプラグイン\u003C\u002Fli>\n\u003Cli>Portuguese \u002F Português Plugin de Chat ao Vivo\u003C\u002Fli>\n\u003Cli>Ukrainian \u002F Українська плагін живого чату\u003C\u002Fli>\n\u003Cli>Romanian \u002F Română plugin de chat live\u003C\u002Fli>\n\u003Cli>Norwegian \u002F Norsk  live chat-plugin\u003C\u002Fli>\n\u003Cli>Polish \u002F Polski wtyczka czatu na żywo\u003C\u002Fli>\n\u003Cli>Swedish \u002F Svenska live chat plugin\u003C\u002Fli>\n\u003Cli>Belarusian \u002F Беларуская мова плагин живого чата\u003C\u002Fli>\n\u003Cli>Catalan \u002F Català complement de xat en directe\u003C\u002Fli>\n\u003Cli>Simplified Chinese \u002F 简体中文 实时聊天插件\u003C\u002Fli>\n\u003Cli>Czech \u002F Česky live chat plugin\u003C\u002Fli>\n\u003Cli>Danish \u002F Danska live chat plugin\u003C\u002Fli>\n\u003Cli>Greek \u002F Ελληνικά προσθήκη ζωντανής συνομιλίας\u003C\u002Fli>\n\u003Cli>Finnish \u002F Suomi live chat-laajennus\u003C\u002Fli>\n\u003Cli>Kazakh \u002F қазақ тілі тірі чат плагині\u003C\u002Fli>\n\u003C\u002Ful>\n","Omnichannel Live Chat and Help Desk plugin, optimized for WordPress. Free, fast, easy to install and to use. Turn your visitors into happy customers!",20000,699430,98,709,"2023-10-25T14:49:00.000Z","6.4.8","3.0.1",[199,200,201,24,202],"free-live-chat","live-chat-plugin","%d1%81hat-plugin","wordpress-live-chat","https:\u002F\u002Fjivochat.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjivochat.1.3.6.1.zip","2022-05-09 00:00:00",{"slug":207,"name":208,"version":209,"author":207,"author_profile":210,"description":211,"short_description":212,"active_installs":213,"downloaded":214,"rating":215,"num_ratings":216,"last_updated":217,"tested_up_to":218,"requires_at_least":197,"requires_php":219,"tags":220,"homepage":25,"download_link":225,"security_score":226,"vuln_count":52,"unpatched_count":72,"last_vuln_date":227,"fetched_at":31},"pure-chat","Pure Chat – Live Chat & More!","2.41","https:\u002F\u002Fprofiles.wordpress.org\u002Fpure-chat\u002F","\u003Cp>Pure Chat is a Live Chat plugin for WordPress. It offers unlimited chats. All chat widget customizations, transcript history, triggers, email forms (when unavailable), etc.\u003C\u002Fp>\n\u003Cp>Pure Chat PRO offers realtime analytics, visitor tracking and contact tracking features. Start your free-trial and get all the features of the PRO plan for 30 days free!\u003C\u002Fp>\n\u003Cp>For more information, visit \u003Ca href=\"https:\u002F\u002Fwww.purechat.com\" title=\"Pure Chat\" rel=\"nofollow ugc\">PureChat.com\u003C\u002Fa>\u003C\u002Fp>\n","Pure Chat provides a Live Chat plugin with Unlimited Chats for your website!",3000,247625,82,45,"2025-02-24T19:19:00.000Z","6.7.5","5.3.0",[221,222,223,224,24],"chat-widget","live-chat","purechat","visitor-tracking","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpure-chat.2.41.zip",90,"2025-02-18 19:21:46",{"attackSurface":229,"codeSignals":320,"taintFlows":365,"riskAssessment":415,"analyzedAt":438},{"hooks":230,"ajaxHandlers":270,"restRoutes":294,"shortcodes":310,"cronEvents":313,"entryPointCount":319,"unprotectedCount":14},[231,237,239,244,248,253,256,260,264,267],{"type":232,"name":233,"callback":234,"file":235,"line":236},"action","rest_api_init","closure","atomchat.php",210,{"type":232,"name":233,"callback":234,"file":235,"line":238},220,{"type":240,"name":241,"callback":242,"file":235,"line":243},"filter","https_ssl_verify","__return_false",246,{"type":232,"name":245,"callback":246,"file":235,"line":247},"admin_menu","atomchatAddToWordPressMenu",250,{"type":232,"name":249,"callback":250,"priority":29,"file":251,"line":252},"wp_head","atomchatCreateBaseData","includes\u002Fatomchat_cloud.php",368,{"type":232,"name":249,"callback":254,"file":251,"line":255},"atomchatGetCloudDockedLayoutCode",370,{"type":232,"name":257,"callback":258,"file":251,"line":259},"init","atomChatUserDetails",372,{"type":232,"name":261,"callback":262,"file":251,"line":263},"atomchat_buddypress_groups_sync_scheduler","atomchat_buddypress_groups_sync",376,{"type":232,"name":265,"callback":262,"file":251,"line":266},"groups_group_create_complete",377,{"type":232,"name":268,"callback":262,"file":251,"line":269},"groups_details_updated",378,[271,274,279,282,285,288,291],{"action":272,"nopriv":51,"callback":272,"hasNonce":51,"hasCapCheck":51,"file":235,"line":273},"atomchat_action",249,{"action":275,"nopriv":51,"callback":276,"hasNonce":51,"hasCapCheck":51,"file":277,"line":278},"atomchatCheckLicenseKey","atomchat_check_license_key_ajax","includes\u002Fatomchat_requesthandler.php",288,{"action":280,"nopriv":51,"callback":280,"hasNonce":51,"hasCapCheck":51,"file":277,"line":281},"atomchat_friend_ajax",289,{"action":283,"nopriv":51,"callback":283,"hasNonce":51,"hasCapCheck":51,"file":277,"line":284},"atomchat_mycred_setting",290,{"action":286,"nopriv":51,"callback":286,"hasNonce":51,"hasCapCheck":51,"file":277,"line":287},"atomchat_update_credeits",291,{"action":289,"nopriv":51,"callback":289,"hasNonce":51,"hasCapCheck":51,"file":277,"line":290},"atomchat_update_auth_ajax",292,{"action":292,"nopriv":51,"callback":292,"hasNonce":51,"hasCapCheck":51,"file":277,"line":293},"atomchat_update_layout_ajax",293,[295,303],{"namespace":296,"route":297,"methods":298,"callback":300,"permissionCallback":301,"file":235,"line":302},"api\u002Fv1","atomchatLogin",[299],"POST","atomchatCustomLogin","__return_true",211,{"namespace":304,"route":305,"methods":306,"callback":307,"permissionCallback":308,"file":235,"line":309},"plugins\u002Fmycred","credits",[299],"atomchatDeductPointsCallback","atomchatDeductPointsPermissionCheck",221,[311],{"tag":4,"callback":312,"file":251,"line":112},"atomchatGetShortCode",[314,316],{"hook":261,"callback":261,"file":251,"line":315},351,{"hook":261,"callback":261,"file":317,"line":318},"includes\u002Fatomchat_selfhosted.php",11,10,{"dangerousFunctions":321,"sqlUsage":337,"outputEscaping":339,"fileOperations":362,"externalRequests":362,"nonceChecks":29,"capabilityChecks":363,"bundledLibraries":364},[322,327,331,334],{"fn":323,"file":324,"line":325,"context":326},"unserialize","admin\u002Fatomchat-admin.php",216,"$role_data = (!empty(get_option(\"atomchat_\".$value))) ? unserialize(get_option(\"atomchat_\".$value)) ",{"fn":323,"file":328,"line":329,"context":330},"plugins\u002Fmycred\u002Fcredits.php",73,"$creditToDeduct = unserialize(get_option(\"atomchat_\".$role));",{"fn":323,"file":328,"line":332,"context":333},168,"$details = !empty(get_option(\"atomchat_\".$roles)) ? unserialize(get_option(\"atomchat_\".$roles)) : \"\"",{"fn":323,"file":328,"line":335,"context":336},208,"$rolefeature = unserialize($rolefeature);",{"prepared":72,"raw":72,"locations":338},[],{"escaped":340,"rawEcho":341,"locations":342},103,9,[343,347,348,350,352,354,356,358,360],{"file":344,"line":345,"context":346},"api\u002Fv1\u002FatomchatLogin.php",32,"raw output",{"file":344,"line":182,"context":346},{"file":328,"line":349,"context":346},17,{"file":328,"line":351,"context":346},81,{"file":328,"line":353,"context":346},157,{"file":328,"line":355,"context":346},176,{"file":328,"line":357,"context":346},201,{"file":328,"line":359,"context":346},227,{"file":328,"line":361,"context":346},241,4,2,[],[366,384,395,405],{"entryPoint":367,"graph":368,"unsanitizedCount":29,"severity":383},"atomchat_update_credeits (includes\u002Fatomchat_requesthandler.php:214)",{"nodes":369,"edges":381},[370,375],{"id":371,"type":372,"label":373,"file":277,"line":374},"n0","source","$_POST",219,{"id":376,"type":377,"label":378,"file":277,"line":379,"wp_function":380},"n1","sink","update_option() [Settings Manipulation]",234,"update_option",[382],{"from":371,"to":376,"sanitized":51},"low",{"entryPoint":385,"graph":386,"unsanitizedCount":363,"severity":383},"atomchat_update_auth_ajax (includes\u002Fatomchat_requesthandler.php:241)",{"nodes":387,"edges":393},[388,391],{"id":371,"type":372,"label":389,"file":277,"line":390},"$_POST (x2)",244,{"id":376,"type":377,"label":378,"file":277,"line":392,"wp_function":380},247,[394],{"from":371,"to":376,"sanitized":51},{"entryPoint":396,"graph":397,"unsanitizedCount":363,"severity":383},"atomchat_update_layout_ajax (includes\u002Fatomchat_requesthandler.php:256)",{"nodes":398,"edges":403},[399,401],{"id":371,"type":372,"label":389,"file":277,"line":400},259,{"id":376,"type":377,"label":378,"file":277,"line":402,"wp_function":380},262,[404],{"from":371,"to":376,"sanitized":51},{"entryPoint":406,"graph":407,"unsanitizedCount":72,"severity":383},"\u003Catomchat_requesthandler> (includes\u002Fatomchat_requesthandler.php:0)",{"nodes":408,"edges":412},[409,411],{"id":371,"type":372,"label":410,"file":277,"line":374},"$_POST (x5)",{"id":376,"type":377,"label":378,"file":277,"line":379,"wp_function":380},[413],{"from":371,"to":376,"sanitized":414},true,{"summary":416,"deductions":417},"The atomchat plugin exhibits a concerning security posture, marked by a significant number of unprotected entry points and a history of medium-severity vulnerabilities, including Cross-Site Scripting and Missing Authorization. While the plugin demonstrates good practices in SQL query handling and output escaping, the high percentage of unprotected AJAX handlers and REST API routes presents a substantial attack surface.  The presence of the 'unserialize' function is a red flag, especially when combined with unsanitized input paths identified in the taint analysis. The vulnerability history, particularly the unpatched CVEs and recurring themes of XSS and authorization flaws, indicates a pattern of potential weaknesses that have been exploited in the past and may continue to be present.\n\nDespite strengths in areas like SQL prepared statements and output escaping, the numerous unprotected entry points and the historical vulnerability data create a high-risk profile. The plugin's last reported vulnerability in 2026 suggests a recent or ongoing maintenance issue, which, coupled with unpatched CVEs, amplifies the risk.  The plugin's security is compromised by its exposed functionalities and its historical tendency to harbor exploitable flaws. Users should exercise extreme caution and consider alternatives until these issues are fully addressed.",[418,420,422,425,428,430,432,434,436],{"reason":419,"points":319},"High number of unprotected AJAX handlers",{"reason":421,"points":14},"REST API route without permission callback",{"reason":423,"points":424},"Unpatched CVEs (2)",20,{"reason":426,"points":427},"History of Cross-Site Scripting",15,{"reason":429,"points":427},"History of Missing Authorization",{"reason":431,"points":319},"Unsanitized paths in taint analysis",{"reason":433,"points":14},"Dangerous function 'unserialize' used",{"reason":435,"points":28},"Only 2 capability checks found",{"reason":437,"points":28},"Only 1 nonce check found","2026-04-16T11:01:50.829Z",{"wat":440,"direct":453},{"assetPaths":441,"generatorPatterns":448,"scriptPaths":449,"versionParams":450},[442,443,444,445,446,447],"\u002Fwp-content\u002Fplugins\u002Fatomchat\u002Fincludes\u002Fatomchat_cloud.php","\u002Fwp-content\u002Fplugins\u002Fatomchat\u002Fincludes\u002Fatomchat_selfhosted.php","\u002Fwp-content\u002Fplugins\u002Fatomchat\u002Fincludes\u002Fatomchat_requesthandler.php","\u002Fwp-content\u002Fplugins\u002Fatomchat\u002Fapi\u002Fv1\u002FatomchatLogin.php","\u002Fwp-content\u002Fplugins\u002Fatomchat\u002Fplugins\u002Fmycred\u002Fcredits.php","\u002Fwp-content\u002Fplugins\u002Fatomchat\u002Fimages\u002Fatom_chat_white_ icon.png",[],[],[451,452],"atomchat\u002Fstyle.css?ver=","atomchat\u002Fscript.js?ver=",{"cssClasses":454,"htmlComments":455,"htmlAttributes":458,"restEndpoints":461,"jsGlobals":464,"shortcodeOutput":467},[],[456,457],"Start: To change the default plugin load order to avoid buddypress plugin conflict","End: To change the default plugin load order to avoid buddypress plugin conflict",[459,460],"data-atomchat-license-key","data-atomchat-client-id",[462,463],"\u002Fwp-json\u002Fapi\u002Fv1\u002FatomchatLogin","\u002Fwp-json\u002Fplugins\u002Fmycred\u002Fcredits",[465,466],"atomchat_clientid","atomchat_old_clientid",[468,469],"[atomchat]","[atomchat_chatbox]",{"error":414,"url":471,"statusCode":472,"statusMessage":473,"message":473},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fatomchat\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":475,"versions":476},19,[477,483,493,502,512,524,536,548,560,572,584,596,608,620,632,644,656,668,680],{"version":6,"download_url":26,"svn_tag_url":478,"released_at":39,"has_diff":51,"diff_files_changed":479,"diff_lines":39,"trac_diff_url":480,"vulnerabilities":481,"is_current":414},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.1.8\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.1.7&new_path=%2Fatomchat%2Ftags%2F1.1.8",[482],{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"version":484,"download_url":485,"svn_tag_url":486,"released_at":39,"has_diff":51,"diff_files_changed":487,"diff_lines":39,"trac_diff_url":488,"vulnerabilities":489,"is_current":51},"1.1.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.1.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.1.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.1.6&new_path=%2Fatomchat%2Ftags%2F1.1.7",[490,491,492],{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"version":93,"download_url":494,"svn_tag_url":495,"released_at":39,"has_diff":51,"diff_files_changed":496,"diff_lines":39,"trac_diff_url":497,"vulnerabilities":498,"is_current":51},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.1.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.1.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.1.5&new_path=%2Fatomchat%2Ftags%2F1.1.6",[499,500,501],{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"version":105,"download_url":503,"svn_tag_url":504,"released_at":39,"has_diff":51,"diff_files_changed":505,"diff_lines":39,"trac_diff_url":506,"vulnerabilities":507,"is_current":51},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.1.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.1.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.1.4&new_path=%2Fatomchat%2Ftags%2F1.1.5",[508,509,510,511],{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":513,"download_url":514,"svn_tag_url":515,"released_at":39,"has_diff":51,"diff_files_changed":516,"diff_lines":39,"trac_diff_url":517,"vulnerabilities":518,"is_current":51},"1.1.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.1.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.1.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.1.3&new_path=%2Fatomchat%2Ftags%2F1.1.4",[519,520,521,522,523],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":525,"download_url":526,"svn_tag_url":527,"released_at":39,"has_diff":51,"diff_files_changed":528,"diff_lines":39,"trac_diff_url":529,"vulnerabilities":530,"is_current":51},"1.1.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.1.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.1.2&new_path=%2Fatomchat%2Ftags%2F1.1.3",[531,532,533,534,535],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":537,"download_url":538,"svn_tag_url":539,"released_at":39,"has_diff":51,"diff_files_changed":540,"diff_lines":39,"trac_diff_url":541,"vulnerabilities":542,"is_current":51},"1.1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.1.1&new_path=%2Fatomchat%2Ftags%2F1.1.2",[543,544,545,546,547],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":549,"download_url":550,"svn_tag_url":551,"released_at":39,"has_diff":51,"diff_files_changed":552,"diff_lines":39,"trac_diff_url":553,"vulnerabilities":554,"is_current":51},"1.1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.1.0&new_path=%2Fatomchat%2Ftags%2F1.1.1",[555,556,557,558,559],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":561,"download_url":562,"svn_tag_url":563,"released_at":39,"has_diff":51,"diff_files_changed":564,"diff_lines":39,"trac_diff_url":565,"vulnerabilities":566,"is_current":51},"1.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.9&new_path=%2Fatomchat%2Ftags%2F1.1.0",[567,568,569,570,571],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":573,"download_url":574,"svn_tag_url":575,"released_at":39,"has_diff":51,"diff_files_changed":576,"diff_lines":39,"trac_diff_url":577,"vulnerabilities":578,"is_current":51},"1.0.9","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.9.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.9\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.8&new_path=%2Fatomchat%2Ftags%2F1.0.9",[579,580,581,582,583],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":585,"download_url":586,"svn_tag_url":587,"released_at":39,"has_diff":51,"diff_files_changed":588,"diff_lines":39,"trac_diff_url":589,"vulnerabilities":590,"is_current":51},"1.0.8","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.8.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.8\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.7&new_path=%2Fatomchat%2Ftags%2F1.0.8",[591,592,593,594,595],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":597,"download_url":598,"svn_tag_url":599,"released_at":39,"has_diff":51,"diff_files_changed":600,"diff_lines":39,"trac_diff_url":601,"vulnerabilities":602,"is_current":51},"1.0.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.6&new_path=%2Fatomchat%2Ftags%2F1.0.7",[603,604,605,606,607],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":609,"download_url":610,"svn_tag_url":611,"released_at":39,"has_diff":51,"diff_files_changed":612,"diff_lines":39,"trac_diff_url":613,"vulnerabilities":614,"is_current":51},"1.0.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.5&new_path=%2Fatomchat%2Ftags%2F1.0.6",[615,616,617,618,619],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":621,"download_url":622,"svn_tag_url":623,"released_at":39,"has_diff":51,"diff_files_changed":624,"diff_lines":39,"trac_diff_url":625,"vulnerabilities":626,"is_current":51},"1.0.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.4&new_path=%2Fatomchat%2Ftags%2F1.0.5",[627,628,629,630,631],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":633,"download_url":634,"svn_tag_url":635,"released_at":39,"has_diff":51,"diff_files_changed":636,"diff_lines":39,"trac_diff_url":637,"vulnerabilities":638,"is_current":51},"1.0.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.3&new_path=%2Fatomchat%2Ftags%2F1.0.4",[639,640,641,642,643],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":645,"download_url":646,"svn_tag_url":647,"released_at":39,"has_diff":51,"diff_files_changed":648,"diff_lines":39,"trac_diff_url":649,"vulnerabilities":650,"is_current":51},"1.0.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.2&new_path=%2Fatomchat%2Ftags%2F1.0.3",[651,652,653,654,655],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":657,"download_url":658,"svn_tag_url":659,"released_at":39,"has_diff":51,"diff_files_changed":660,"diff_lines":39,"trac_diff_url":661,"vulnerabilities":662,"is_current":51},"1.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.1&new_path=%2Fatomchat%2Ftags%2F1.0.2",[663,664,665,666,667],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":669,"download_url":670,"svn_tag_url":671,"released_at":39,"has_diff":51,"diff_files_changed":672,"diff_lines":39,"trac_diff_url":673,"vulnerabilities":674,"is_current":51},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fatomchat%2Ftags%2F1.0.0&new_path=%2Fatomchat%2Ftags%2F1.0.1",[675,676,677,678,679],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93},{"version":681,"download_url":682,"svn_tag_url":683,"released_at":39,"has_diff":51,"diff_files_changed":684,"diff_lines":39,"trac_diff_url":39,"vulnerabilities":685,"is_current":51},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatomchat.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatomchat\u002Ftags\u002F1.0.0\u002F",[],[686,687,688,689,690],{"id":100,"url_slug":101,"title":102,"severity":41,"cvss_score":106,"vuln_type":44,"patched_in_version":105},{"id":74,"url_slug":75,"title":76,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":39},{"id":35,"url_slug":36,"title":37,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":62,"url_slug":63,"title":64,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":6},{"id":88,"url_slug":89,"title":90,"severity":41,"cvss_score":79,"vuln_type":81,"patched_in_version":93}]