WP-Safety

Live Chat Marketing Automation Security & Risk Analysis

wordpress.org/plugins/azexo-facebook-live-chat

Add Facebook Customer Chat to your site. Collect subscribers and send news or marketing offers.

0 active installs v1.27.4 PHP + WP 4.4+ Updated Oct 9, 2018
chatfacebookfacebook-chatlive-chatlive-support
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Live Chat Marketing Automation Safe to Use in 2026?

Generally Safe

Score 85/100

Live Chat Marketing Automation has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago
Risk Assessment

The "azexo-facebook-live-chat" plugin version 1.27.4 exhibits significant security concerns stemming from its static analysis. A primary area of worry is the presence of two AJAX handlers that lack authentication checks, exposing them to potential unauthorized access and manipulation. This broad attack surface without proper authorization is a critical weakness. Furthermore, the code's handling of output escaping is poor, with only 17% of outputs being properly escaped, increasing the risk of cross-site scripting (XSS) vulnerabilities. While the plugin has no recorded CVEs and no bundled libraries, these positive aspects are overshadowed by the immediately identifiable code-level vulnerabilities.

Key Concerns

  • AJAX handlers without auth checks
  • Low percentage of properly escaped output
  • No nonce checks on AJAX actions
  • Low percentage of prepared SQL statements
  • File operations present
Vulnerabilities
None known

Live Chat Marketing Automation Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Live Chat Marketing Automation Release Timeline

No version history available.
Code Analysis
Analyzed Mar 17, 2026

Live Chat Marketing Automation Code Analysis

Dangerous Functions
0
Raw SQL Queries
14
5 prepared
Unescaped Output
15
3 escaped
Nonce Checks
0
Capability Checks
0
File Operations
16
External Requests
0
Bundled Libraries
0

SQL Query Safety

26% prepared19 total queries

Output Escaping

17% escaped18 total outputs
Data Flows · Security
4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths
azm_fb_webhook (azh_facebook_live_chat.php:130)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Live Chat Marketing Automation Attack Surface

Entry Points2
Unprotected2

AJAX Handlers 2

authwp_ajax_azm_fb_webhookazh_facebook_live_chat.php:127
noprivwp_ajax_azm_fb_webhookazh_facebook_live_chat.php:128
WordPress Hooks 14
actionplugins_loadedazh_facebook_live_chat.php:11
actionadmin_noticesazh_facebook_live_chat.php:17
actionwp_footerazh_facebook_live_chat.php:26
actionadmin_menuazh_facebook_live_chat.php:410
actionadmin_initazh_facebook_live_chat.php:437
filterazr_settingsazh_facebook_live_chat.php:559
filterazr_process_actionazh_facebook_live_chat.php:752
filterazm_fb_chat_greetingazh_facebook_live_chat.php:765
actionazm_send_fb_processazh_facebook_live_chat.php:816
actioninitazh_facebook_live_chat.php:886
filterazr_get_action_resultsazh_facebook_live_chat.php:909
actionwp_insert_postazh_facebook_live_chat.php:922
actionupdate_option_azh-fb-settingsazh_facebook_live_chat.php:1016
actionazm_fb_pageazh_facebook_live_chat.php:1076

Scheduled Events 1

azm_send_fb_process
Maintenance & Trust

Live Chat Marketing Automation Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29
Last updatedOct 9, 2018
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Live Chat Marketing Automation Alternatives

Chatra Live Chat + ChatBot + Cart Saver

Chatra Live Chat + ChatBot + Cart Saver

chatra-live-chat

C
63

Powerful chat / chatbot / Fb chat and cart saver app for Wordpress and WooCommerce, free as long as you want.

3K 1 unpatched
Fast Live Chat

Fast Live Chat

fast-live-chat

A
85

Use Facebook Messanger as live chat

100 No CVEs
Leaddevs Messenger Live Chatbot

Leaddevs Messenger Live Chatbot

leaddevs-chatbot

A
85

Leaddevs Messenger Live Chatbot

10 No CVEs
3CX Free Live Chat, Calls & Messaging

3CX Free Live Chat, Calls & Messaging

wp-live-chat-support

A
94

Chat with your website visitors in real-time for free! Engage with your customers and increase sales.

100K 15 CVEs
WPBot – AI ChatBot for Live Support, Lead Generation, AI Services

WPBot – AI ChatBot for Live Support, Lead Generation, AI Services

chatbot

B
76

AI ChatBot for WordPress WPBot - Automated 24/7 Live Chat Customer Support. NATIVE, Lead Generation, Forms, Gemini, DialogFlow, ChatGPT, OpenRouter

6K 35 CVEs
Developer Profile

Live Chat Marketing Automation Developer Profile

azexo

12 plugins · 150 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Live Chat Marketing Automation

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Script Paths
/wp-content/plugins/azexo-facebook-live-chat/assets/js/azh_facebook_live_chat.js

HTML / DOM Fingerprints

CSS Classes
fb-customerchat
Data Attributes
page_idrefminimizedlogged_in_greetinglogged_out_greetingtheme_color
JS Globals
window.fbAsyncInitFB.init
REST Endpoints
/wp-ajax.php?action=azm_fb_webhook
FAQ

Frequently Asked Questions about Live Chat Marketing Automation