[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fFIRnad1dSddTwNUJujLbgaB3rwr3VqN82LYloDARnTQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":20,"download_link":21,"security_score":22,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":34,"analysis":136,"fingerprints":264},"chat-room","Chat Room","0.1.3","webdevstudios","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebdevstudios\u002F","\u003Cp>The Chat Room plugin allows administrators to easily create chat rooms for their users to participate in. Chat rooms are created via the WordPress administrative interface. After creation, users can access it via the permalink for the chat room.\u003C\u002Fp>\n\u003Cp>The plugin currently will only support servers that have direct PHP filesystem access, which may not be available on all hosting environments.\u003C\u002Fp>\n\u003Cp>All official development on this plugin is on GitHub. Version bumps will still be published here on WordPress.org. You can find the repo at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FWebDevStudios\u002FChat-Room\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002FWebDevStudios\u002FChat-Room\u003C\u002Fa>. Please file issues, bugs, and enhancement ideas there, when possible.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpluginize.com\u002F?utm_source=chat-room&utm_medium=text&utm_campaign=wporg\" rel=\"nofollow ugc\">Pluginize\u003C\u002Fa> was launched in 2016 by \u003Ca href=\"https:\u002F\u002Fwebdevstudios.com\u002F\" rel=\"nofollow ugc\">WebDevStudios\u003C\u002Fa> to promote, support, and house all of their \u003Ca href=\"https:\u002F\u002Fpluginize.com\u002Fshop\u002F?utm_source=chat-room&utm_medium=text&utm_campaign=wporg\" rel=\"nofollow ugc\">WordPress products\u003C\u002Fa>. Pluginize is not only creating new products for WordPress all the time, but also provides \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-post-type-ui\u002F\" rel=\"ugc\">ongoing support and development for WordPress community favorites like CPTUI\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcmb2\u002F\" rel=\"ugc\">CMB2\u003C\u002Fa>, and more.\u003C\u002Fp>\n","Create chat rooms on your site for users to participate in.",100,49660,84,13,"2017-03-11T03:54:00.000Z","4.7.32","3.3","",[4],"http:\u002F\u002Fwebdevstudios.com\u002Fsupport\u002Fwordpress-plugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchat-room.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":29,"avg_security_score":30,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},9,1018190,93,705,74,"2026-04-04T01:06:21.847Z",[35,61,81,99,117],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":56,"download_link":57,"security_score":58,"vuln_count":59,"unpatched_count":23,"last_vuln_date":60,"fetched_at":25},"rumbletalk-chat-a-chat-with-themes","RumbleTalk Live Group Chat – HTML5","6.3.9","RumbleTalk","https:\u002F\u002Fprofiles.wordpress.org\u002Frumbletalk\u002F","\u003Ch4>WordPress Group Chat Plugin\u003C\u002Fh4>\n\u003Cp>Live group chat plugin for WordPress. Integrate it into your website in minutes. Create one or multiple rooms effortlessly.\u003C\u002Fp>\n\u003Cp>We support 4 chat types:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Members-only group chat – Integrated with your user base.\u003C\u002Fli>\n\u003Cli>Queued chat – Admins approve every message.\u003C\u002Fli>\n\u003Cli>Social chat – Open chat room for online discussions.\u003C\u002Fli>\n\u003Cli>Experts chat – One-on-one chats (private chats).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>797,100 websites and online events are already using the \u003Ca href=\"https:\u002F\u002Frumbletalk.com\u002F\" rel=\"nofollow ugc\">RumbleTalk HTML Chat Platform\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The chat platform is a hosted professional \u003Cstrong>chat room plugin\u003C\u002Fstrong> with a quick integration to your WordPress members’ user base.\u003Cbr \u002F>\nYou may add it to any type of website, blog, or real-time event.\u003C\u002Fp>\n\u003Cp>Unique features that can be set in the admin panel:\u003C\u002Fp>\n\u003Cp>1) Integrate your users base with one click – your website members will then auto-login to the chat.\u003Cbr \u002F>\n2) Moderated chat mode for live events – approve every message before showing it to all.\u003Cbr \u002F>\n3) Private video and audio calls for private one-on-one video discussions\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F70_zc1fvUtM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>The ideal plugin for members chat, live online events, Group chats, live community, radio shows, fans clubs, stocks & forex trading, hobbies, sports, group discussions…and much more\u003C\u002Fp>\n\u003Ch3>Plug-in Name\u003C\u002Fh3>\n\u003Cp>rumbletalk-chat-a-chat-with-themes\u003C\u002Fp>\n\u003Ch3>WHAT IS A LIVE GROUP CHAT FOR WORDPRESS?\u003C\u002Fh3>\n\u003Cp>RumbleTalk platform is easy to set group chat plugin for WordPress, buddypress and bbpress\u003Cbr \u002F>\n1) Members-only website\u003Cbr \u002F>\n2) Social website\u003Cbr \u002F>\n3) Live online event website\u003Cbr \u002F>\n4) Integrated into any platform using our REST API.\u003C\u002Fp>\n\u003Cp>Adding one or many rooms is a no-brainer with the RumbleTalk plugin. Add a chat widget to your website in two minutes.\u003C\u002Fp>\n\u003Ch4>BuddyPress & BBpress Integration\u003C\u002Fh4>\n\u003Cp>This group chat plugin supports automatic user base integration with WordPress, BuddyPress and BBpress.\u003C\u002Fp>\n\u003Ch3>Chat Features\u003C\u002Fh3>\n\u003Cpre>\n\nNEW - Pin messages, files and videos\n\n* Poll options in the chat\n* Bio Description can be added in the username (ex: display name+bio)\n* Admin count in plan summary added\n* Admin button is added for easy access\n\n* support for avatar integration with different members' plugins.\n* Integration with WordPress users base avatar\n* Mark text as bold, italic, strike and code.\n* Admin mode - mute all users.\n* New lines - now you can add more lines in each message\n* Font size - increase\u002Fdecrease the web-based font size\n* Private chat - prevents automatic private chat window popup   \n\n* support for more currencies\n* Paid access, bug fixes\n* Experts chat, allows you to advice in a private conversation (with or without payment)\n* Control what username will show in the chat\n* Keywords feature - automatic text highlights\n* login type: Register before logging in\n\n* Better Sound Control\n* History search options\n* Export chat history to CSV or HTML\n* Video chat messages, record 30-second video messages.\n* Mobile video calls (android)\n* Set Private chats with registered users\n* Spam Filter applied also for users name\n* Create additional rooms directly from the plugin\n* Open settings from the WordPress admin\n* Delete Archive messages directly from the chat\n* Increase Font Size in mobile\n\n* Full Screen In mobile mode\n* Admin user avatar\n* BuddyPress integration\n* Export Chat Transcript from the chat interface\n* Auto login with your own users-base users name (API)\n* IP info\n\n* Upload Images from your mobile device\n* Take photos from your mobile version\n* One on One VIDEO and Audio calls\n* Upload Docs, Excel, PowerPoint, PDF files\n* Upload Images from your own PC\n\n* Take pictures from your PC camera\n* Easily Embed a group chat in your site.\n* Chatroom Theme Library\n* Talk from Mobile and Tablet.\n* Login, Share and Invite\n* Private chat\n\n* SSL - new secure channel TLS1.2\n* Design your own chat theme.\n* Design your chat with css (for advanced users)\n* Manage more than one chat.\n* Spam filter (create a black listed words).\n* Disconnect Trolls.\n\n* Ban users by IP.\n* Define moderators and rolls.\n* Archive your chat, Save log of your chat history.\n* Chat in 30 languages.\n* Offline Mode\n* Delete single messages\n* Flood control\n* Control the side of the floating icon\n* Advanced dashboard for managing your chat rooms\n* Send audio and video messages\n* Set your own sound for different types of actions\n* In-Chat payment options\n\n\u003C\u002Fpre>\n\u003Cp>BuddyPress Chat Room Integration\u003Cbr \u002F>\nThese members chat plugin supports automatic integration with BuddyPress plugin.\u003C\u002Fp>\n\u003Ch3>Languages\u003C\u002Fh3>\n\u003Cpre>\nEnglish, Español, Bahasa Indonesia, Català, Czech, Dansk sprog\nDeutsch, Français, Italiano, Magyar, فارسی, Nederlands, Dutch, Polski\nPortuguês, Română, ภาษาไทย, Slovenčina, Suomi, Svenska, Tiếng Việt\nTürkçe, ελληνικά, Български, Македонски, Русский язык\nСрбски, Українська, עברית , عربي\n\u003C\u002Fpre>\n","Live group chat plugin for WordPress. Integrate it into your website in minutes. Create one or multiple rooms effortlessly.",800,206700,68,21,"2026-02-04T13:53:00.000Z","6.9.4","3.6","5.2.0",[52,4,53,54,55],"buddypress-chat","community-chat","group-chat","members-chat","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frumbletalk-chat-a-chat-with-themes\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frumbletalk-chat-a-chat-with-themes.6.3.9.zip",96,3,"2025-09-03 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":23,"num_ratings":23,"last_updated":18,"tested_up_to":71,"requires_at_least":72,"requires_php":18,"tags":73,"homepage":78,"download_link":79,"security_score":11,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":80},"kn-public-chat","KN Public Chat","1.0.2","Freddie Aziz Jasbindar","https:\u002F\u002Fprofiles.wordpress.org\u002Fkakinetwork\u002F","\u003Cul>\n\u003Cli>For anyone who has cbox.ws premium acc, you can use this plugin for your own purpose also!\u003C\u002Fli>\n\u003Cli>We use premium chatbox.ws as chatroom we will share the room! Anyone who install this plugin will get connected via this chat room. This plugin was intergrate in wordpress display name, so anyone who already registered in your wordpress, they can chat with their display name anytime.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Demo\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>http:\u002F\u002Fwww.kakiheboh.com (widget)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Feature\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Implement your own cbox.ws premium account\u003C\u002Fli>\n\u003Cli>Widget\u003C\u002Fli>\n\u003Cli>Gravatar Intergration\u003C\u002Fli>\n\u003Cli>Display Name (from wordpress profile)\u003C\u002Fli>\n\u003Cli>Your own blog URL\u003C\u002Fli>\n\u003C\u002Ful>\n","KN Public Chat is a free WordPress Plugin that lets your visitors and visitor from anyone who install this plugin can chat together in 1 public chat r …",10,7392,"3.3.2","3.0.1",[74,75,4,76,77],"cbox","cbox-ws","live-chat","widget","http:\u002F\u002Fwww.KakiNetwork.Com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkn-public-chat.zip","2026-03-15T10:48:56.248Z",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":69,"downloaded":89,"rating":90,"num_ratings":59,"last_updated":91,"tested_up_to":18,"requires_at_least":92,"requires_php":18,"tags":93,"homepage":97,"download_link":98,"security_score":22,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":25},"personal-chat-room","Personal Chat room","1.1","Rohitashv Singhal","https:\u002F\u002Fprofiles.wordpress.org\u002Flordlinus\u002F","\u003Cp>Personal Chat Room adds a facility to allow your customers to chat with one another. Here They can questions with another users and can get the answers\u003Cbr \u002F>\nfrom another users of your website.\u003C\u002Fp>\n\u003Cp>For any bug or report or error or suggetions or feedback, you can post the support\u003C\u002Fp>\n\u003Cp>Basically It has the following features :\u003Cbr \u002F>\n * Add a sidebar button to your site to allow your customers to chat\u003Cbr \u002F>\n * Add shortcode PERSONAL_CHAT_ROOM to any page or post to activate the plugin\u003Cbr \u002F>\n * Private Chat (Premium Feature)\u003C\u002Fp>\n","Personal Chat Room adds a facility to allow your customers to chat with one another. Here They can questions with another users and can get the answer …",4268,66,"2013-08-13T15:07:00.000Z","2.0.2",[94,4,95,96,82],"chat","chat-with-online-members","online-chat","http:\u002F\u002Fbusinessadwings.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpersonal-chat-room.1.1.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":69,"downloaded":107,"rating":11,"num_ratings":108,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":112,"tags":113,"homepage":18,"download_link":116,"security_score":22,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":25},"roomlio-group-chat","Roomlio – Group Chat","1.0.5","roomlio","https:\u002F\u002Fprofiles.wordpress.org\u002Froomlio\u002F","\u003Cp>Roomlio is an embeddable chat platform. It allows you to simply and quickly embed a chat room anywhere on your WordPress pages or posts. It differs from existing chat applications because it focuses on embedding group chat\u003Cbr \u002F>\nrooms in existing pages instead of sending your users off to a 3rd part chat application. You can think of it as offering\u003Cbr \u002F>\nembeddable “Twitch style” or “Youtube style” chat for your WordPress users and visitors. Although Roomlio focuses on embedding chat rooms inside of WordPress, it still provides an app\u003Cbr \u002F>\nfor admins and operators to manage all the embedded channels and chat with embedded users.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Keep your users on your site\u002Fdomain while chatting. Roomlio branding can be hidden for a seemless experience. Maintain your brand by not sending users to external chat applications.\u003C\u002Fli>\n\u003Cli>Automatically securely identify your logged in WordPress users. No separate login required. (If users are not logged in they will be identified based on geolocation)\u003C\u002Fli>\n\u003Cli>No code required. Our plugin lets you place chat room widgets where you want them in a user friendly way.\u003C\u002Fli>\n\u003Cli>Unlimited chat rooms. Create as many as you want, we don’t restrict that.\u003C\u002Fli>\n\u003Cli>Unlimited chat history\u003C\u002Fli>\n\u003Cli>Admin app. Manage all the rooms you create in one place using our dedicated Admin app (Works on all major operating systems, Windows, Mac, iOS and Android).\u003C\u002Fli>\n\u003Cli>Customize the appearance\u002Fsize of your rooms.\u003C\u002Fli>\n\u003Cli>Support for images\u002Fgifs.\u003C\u002Fli>\n\u003Cli>Offline mode. Allow visitors to leave an offline message (optionally forwarded to email) if your room is in offline mode.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more details, visit \u003Ca href=\"https:\u002F\u002Froomlio.com\" rel=\"nofollow ugc\">Roomlio\u003C\u002Fa> and talk to us!\u003C\u002Fp>\n\u003Cp>INFO: This plugin requires a paid plan from \u003Ca href=\"https:\u002F\u002Froomlio.com\" rel=\"nofollow ugc\">Roomlio\u003C\u002Fa> to work (14 day free trial offered w\u002Fo credit card).\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>Since Roomlio is a Software as a Service (SaaS) product, you will accept the Terms of Service and Privacy Policy at the time you signup for a Roomlio account. Here is a direct link to those below in case you want to take a look now.\u003Cbr \u002F>\n– https:\u002F\u002Froomlio.com\u002Flegal\u002Fterms\u002F\u003Cbr \u002F>\n– https:\u002F\u002Froomlio.com\u002Flegal\u002Fprivacy-policy\u002F\u003C\u002Fp>\n\u003Cp>Also, we believe your data belongs to you and we comply with GDPR. More info here https:\u002F\u002Froomlio.com\u002Flegal\u002Feu-privacy-summary\u002F\u003C\u002Fp>\n","Roomlio is a chat platform that allows you to embed a chat room anywhere in your existing Wordpress pages and posts.",4676,1,"2022-05-26T14:12:00.000Z","6.0.0","4.0","5.6.39",[94,4,114,54,115],"embed-chat","rooms","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Froomlio-group-chat.1.0.5.zip",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":69,"downloaded":125,"rating":126,"num_ratings":127,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":18,"tags":131,"homepage":18,"download_link":135,"security_score":22,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":25},"website-toolbox-chat-rooms","Website Toolbox Chat Room","1.1.5","Website Toolbox LLC","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebsitetoolbox\u002F","\u003Cp>Not a Website Toolbox Chat Room owner? \u003Ca href=\"https:\u002F\u002Fwww.websitetoolbox.com\u002Fchat_room\u002Findex.html#wordpress\" rel=\"nofollow ugc\">Create a Chat Room Now!\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Website Toolbox allows you to easily add a Chat Room to your website without any coding or software headaches! The Website Toolbox Chat Room WordPress plugin is the easiest way to integrate a Website Toolbox Chat Room into your WordPress site.\u003C\u002Fp>\n\u003Cp>Ranked #1 by StarReviews!\u003C\u002Fp>\n\u003Ch4>Plugin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Login Integration: Automatically logs the user into your Website Toolbox Chat Room when they login to your WordPress website.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Registration Integration: Automatically creates a Website Toolbox Chat Room user account when a user registers on your WordPress website.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Embedded Chat Room: The Website Toolbox Chat Room is automatically embedded into the layout of your WordPress website.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key Chat Room Benefits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Instant Setup\u003C\u002Fli>\n\u003Cli>Phone\u002FChat\u002FEmail Support\u003C\u002Fli>\n\u003Cli>Mobile friendly\u003C\u002Fli>\n\u003Cli>Public or Private\u003C\u002Fli>\n\u003Cli>White Label\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key Chat Room Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Embeddable\u003C\u002Fli>\n\u003Cli>Multiple Rooms\u003C\u002Fli>\n\u003Cli>Private Messaging\u003C\u002Fli>\n\u003Cli>Searchable Message Archive\u003C\u002Fli>\n\u003Cli>Emoticons\u003C\u002Fli>\n\u003Cli>User Accounts\u003C\u002Fli>\n\u003Cli>Administrators\u003C\u002Fli>\n\u003Cli>Guest Users\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.websitetoolbox.com\u002Fchat_room\u002Findex.html#wordpress\" rel=\"nofollow ugc\">Learn More\u003C\u002Fa>\u003C\u002Fp>\n","Website Toolbox is the easiest way to create a powerful Chat Room. This plugin embeds your Website Toolbox Chat Room and integrates single sign on.",11921,60,2,"2024-03-18T08:34:00.000Z","6.5.8","3.0.0",[94,4,132,133,134],"chat-room-hosting","chatroom","saas-chat-room","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwebsite-toolbox-chat-rooms.1.1.5.zip",{"attackSurface":137,"codeSignals":174,"taintFlows":187,"riskAssessment":251,"analyzedAt":263},{"hooks":138,"ajaxHandlers":162,"restRoutes":171,"shortcodes":172,"cronEvents":173,"entryPointCount":127,"unprotectedCount":127},[139,145,149,153,157],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","init","register_post_types","chat-room.php",16,{"type":140,"name":146,"callback":147,"file":143,"line":148},"wp_enqueue_scripts","enqueue_scripts",17,{"type":140,"name":150,"callback":151,"priority":69,"file":143,"line":152},"save_post","maybe_create_chatroom_log_file",18,{"type":140,"name":154,"callback":155,"file":143,"line":156},"wp_head","define_javascript_variables",19,{"type":158,"name":159,"callback":160,"file":143,"line":161},"filter","the_content","the_content_filter",22,[163,168],{"action":164,"nopriv":165,"callback":166,"hasNonce":165,"hasCapCheck":165,"file":143,"line":167},"check_updates",false,"ajax_check_updates_handler",20,{"action":169,"nopriv":165,"callback":170,"hasNonce":165,"hasCapCheck":165,"file":143,"line":46},"send_message","ajax_send_message_handler",[],[],[],{"dangerousFunctions":175,"sqlUsage":176,"outputEscaping":178,"fileOperations":185,"externalRequests":23,"nonceChecks":23,"capabilityChecks":23,"bundledLibraries":186},[],{"prepared":23,"raw":23,"locations":177},[],{"escaped":59,"rawEcho":127,"locations":179},[180,183],{"file":143,"line":181,"context":182},94,"raw output",{"file":143,"line":184,"context":182},110,6,[],[188,219],{"entryPoint":189,"graph":190,"unsanitizedCount":127,"severity":218},"ajax_check_updates_handler (chat-room.php:100)",{"nodes":191,"edges":214},[192,197,202,205,209],{"id":193,"type":194,"label":195,"file":143,"line":196},"n0","source","$_POST",102,{"id":198,"type":199,"label":200,"file":143,"line":184,"wp_function":201},"n1","sink","echo() [XSS]","echo",{"id":203,"type":194,"label":195,"file":143,"line":204},"n2",103,{"id":206,"type":207,"label":208,"file":143,"line":204},"n3","transform","→ parse_messages_log_file()",{"id":210,"type":199,"label":211,"file":143,"line":212,"wp_function":213},"n4","fopen() [File Access]",196,"fopen",[215,216,217],{"from":193,"to":198,"sanitized":165},{"from":203,"to":206,"sanitized":165},{"from":206,"to":210,"sanitized":165},"medium",{"entryPoint":220,"graph":221,"unsanitizedCount":250,"severity":218},"\u003Cchat-room> (chat-room.php:0)",{"nodes":222,"edges":243},[223,224,225,227,229,231,233,235,238,241],{"id":193,"type":194,"label":195,"file":143,"line":196},{"id":198,"type":199,"label":200,"file":143,"line":184,"wp_function":201},{"id":203,"type":194,"label":226,"file":143,"line":196},"$_POST (x2)",{"id":206,"type":199,"label":211,"file":143,"line":228,"wp_function":213},182,{"id":210,"type":194,"label":230,"file":143,"line":204},"$_POST (x3)",{"id":232,"type":207,"label":208,"file":143,"line":204},"n5",{"id":234,"type":199,"label":211,"file":143,"line":212,"wp_function":213},"n6",{"id":236,"type":194,"label":226,"file":143,"line":237},"n7",166,{"id":239,"type":207,"label":240,"file":143,"line":237},"n8","→ write_log_file()",{"id":242,"type":199,"label":211,"file":143,"line":228,"wp_function":213},"n9",[244,245,246,247,248,249],{"from":193,"to":198,"sanitized":165},{"from":203,"to":206,"sanitized":165},{"from":210,"to":232,"sanitized":165},{"from":232,"to":234,"sanitized":165},{"from":236,"to":239,"sanitized":165},{"from":239,"to":242,"sanitized":165},8,{"summary":252,"deductions":253},"The \"chat-room\" plugin version 0.1.3 presents a notable security risk primarily due to its unprotected entry points. The static analysis reveals two AJAX handlers, both of which lack authentication checks. This means any unauthenticated user could potentially interact with these handlers, leading to unintended actions or information disclosure.\n\nWhile the plugin demonstrates good practices in other areas, such as 100% use of prepared statements for SQL queries and no known vulnerabilities in its history, the absence of proper authorization for AJAX requests is a significant concern. The taint analysis also identified two flows with unsanitized paths, which, despite not being classified as critical or high severity in this analysis, warrant attention. These unsanitized paths could potentially be exploited if combined with other weaknesses or if the context of their use is more dangerous than initially assessed.\n\nOverall, the plugin has strengths in its SQL handling and a clean vulnerability history. However, the unprotected AJAX handlers and unsanitized path flows create a critical attack vector that overshadows these positive aspects. The lack of capability checks and nonce checks on these entry points further amplifies the risk, suggesting a need for immediate remediation to secure these functions.",[254,256,258,261],{"reason":255,"points":69},"Unprotected AJAX handlers (2)",{"reason":257,"points":250},"Flows with unsanitized paths (2)",{"reason":259,"points":260},"Missing nonce checks on AJAX",5,{"reason":262,"points":260},"Missing capability checks","2026-03-16T21:09:35.741Z",{"wat":265,"direct":274},{"assetPaths":266,"generatorPatterns":269,"scriptPaths":270,"versionParams":271},[267,268],"\u002Fwp-content\u002Fplugins\u002Fchat-room\u002Fchat-room.js","\u002Fwp-content\u002Fplugins\u002Fchat-room\u002Fchat-room.css",[],[267],[272,273],"chat-room\u002Fchat-room.js?ver=","chat-room\u002Fchat-room.css?ver=",{"cssClasses":275,"htmlComments":279,"htmlAttributes":280,"restEndpoints":281,"jsGlobals":283,"shortcodeOutput":286},[276,277,278],"chat-container","chat-text-entry","chat-message-",[],[],[282],"\u002Fwp-json\u002Fwp\u002Fv2\u002Fchat-room",[284,285],"ajaxurl","chatroom_slug",[287,288],"\u003Cdiv class=\"chat-container\">","\u003Ctextarea class=\"chat-text-entry\">\u003C\u002Ftextarea>"]