WP-Safety

ChatBot for Easy Digital Downloads Security & Risk Analysis

wordpress.org/plugins/chatbot-for-easy-digital-downloads

ChatBot for Easy Digital Downloads - EDD. This simple, no coding required, native Easy Digital Downloads ChatBot helps shoppers find products easily & …

0 active installs v0.9.3 PHP 5.6+ WP 4.9+ Updated Unknown
botchatboteasy-digital-downloadseddlive-chat
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is ChatBot for Easy Digital Downloads Safe to Use in 2026?

Generally Safe

Score 100/100

ChatBot for Easy Digital Downloads has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The 'chatbot-for-easy-digital-downloads' plugin v0.9.3 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, exclusively using prepared statements, and has a high percentage of properly escaped output. The absence of known CVEs and a clean vulnerability history, with no recorded vulnerabilities, suggests a well-maintained and potentially secure codebase. However, significant concerns arise from the attack surface analysis, which reveals a substantial number of unprotected AJAX handlers. With 9 AJAX handlers and 8 lacking authentication checks, this presents a considerable risk of unauthorized actions being performed. The presence of the 'unserialize' function, a known dangerous function often associated with deserialization vulnerabilities, warrants caution, though no specific exploitation paths were found in the taint analysis for this version. The limited number of nonce checks and capability checks further exacerbates the risk associated with the unprotected AJAX endpoints. While the taint analysis shows no critical or high severity issues, the inherent danger of 'unserialize' and the exposed AJAX handlers cannot be ignored.

Key Concerns

  • Unprotected AJAX handlers
  • Dangerous function: unserialize
  • Limited nonce checks
  • Limited capability checks
Vulnerabilities
None known

ChatBot for Easy Digital Downloads Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

ChatBot for Easy Digital Downloads Code Analysis

Dangerous Functions
2
Raw SQL Queries
0
0 prepared
Unescaped Output
15
362 escaped
Nonce Checks
2
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

Dangerous Functions Found

unserialize$wp_chatbot_select_pages = unserialize(get_option('wp_chatbot_show_pages_list'));functions.php:232
unserialize$wp_chatbot_select_pages = unserialize(get_option('wp_chatbot_show_pages_list'));qcld-eddbot.php:449

Output Escaping

96% escaped377 total outputs
Data Flows
All sanitized

Data Flow Analysis

4 flows
goodbye_form_callback (class-plugin-deactivate-feedback.php:411)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
8 unprotected

ChatBot for Easy Digital Downloads Attack Surface

Entry Points9
Unprotected8

AJAX Handlers 9

authwp_ajax_goodbye_formclass-plugin-deactivate-feedback.php:62
authwp_ajax_qcld_eddbot_keywordfunctions.php:71
noprivwp_ajax_qcld_eddbot_keywordfunctions.php:72
authwp_ajax_qcld_eddbot_categoryfunctions.php:128
noprivwp_ajax_qcld_eddbot_categoryfunctions.php:129
authwp_ajax_qcld_eddbot_category_productsfunctions.php:146
noprivwp_ajax_qcld_eddbot_category_productsfunctions.php:147
authwp_ajax_qcld_eddbot_emailfunctions.php:319
noprivwp_ajax_qcld_eddbot_emailfunctions.php:320
WordPress Hooks 10
actionadmin_footer-plugins.phpclass-plugin-deactivate-feedback.php:61
filterwp_mail_content_typeclass-plugin-deactivate-feedback.php:97
actionwp_footerfunctions.php:10
actionadmin_menuqcld-eddbot-info-page.php:8
actionadmin_menuqcld-eddbot.php:75
actionadmin_initqcld-eddbot.php:79
actionadmin_enqueue_scriptsqcld-eddbot.php:82
actionwp_enqueue_scriptsqcld-eddbot.php:85
actionplugins_loadedqcld-eddbot.php:1481
actionplugins_loadedqcld-eddbot.php:1601
Maintenance & Trust

ChatBot for Easy Digital Downloads Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.11
Last updatedUnknown
PHP min version5.6
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

ChatBot for Easy Digital Downloads Alternatives

Tidio – Live Chat & AI Chatbots

Tidio – Live Chat & AI Chatbots

tidio-live-chat

A
99

Add Tidio Live Chat to your WordPress for free to answer customers’ questions, engage website visitors, generate leads, and increase sales.

80K 2 CVEs
Buttonizer – Live Chat, AI Chatbot, & Chat Widgets

Buttonizer – Live Chat, AI Chatbot, & Chat Widgets

button-contact-vr

A
98

Powerful platform with Live Chat, AI Chatbots, and Real-Time Visitor Monitoring! Also, create Call, Email, SMS, & Contact buttons to increase conv …

60K 3 CVEs
Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & Chat Buttons

Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & Chat Buttons

chatway-live-chat

A
100

AI chatbot & live chat for customer support, FAQ, chat buttons including WhatsApp with Chatway live chat. iOS & Android apps available 💬

30K No CVEs
Crisp – Live Chat and Chatbot

Crisp – Live Chat and Chatbot

crisp

A
99

A Free, one-click-to-install, Live Chat and chatbot plugin. No coding skills are required. Used by more than 30 000 customers on WordPress.

20K 2 CVEs
Zoho SalesIQ – Live chat, chatbots, and visitor tracking

Zoho SalesIQ – Live chat, chatbots, and visitor tracking

zoho-salesiq

A
97

Identify, engage and convert website visitors with live chat and visitor analytics.

20K 4 CVEs
Developer Profile

ChatBot for Easy Digital Downloads Developer Profile

QuantumCloud

29 plugins · 26K total installs

76
trust score
Avg Security Score
96/100
Avg Patch Time
255 days
View full developer profile
Detection Fingerprints

How We Detect ChatBot for Easy Digital Downloads

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/chatbot-for-easy-digital-downloads/css/admin-style.css/wp-content/plugins/chatbot-for-easy-digital-downloads/css/font-awesome.min.css/wp-content/plugins/chatbot-for-easy-digital-downloads/css/woo-chatbot-tabs.css/wp-content/plugins/chatbot-for-easy-digital-downloads/js/cbpFWTabs.js/wp-content/plugins/chatbot-for-easy-digital-downloads/js/modernizr.custom.js/wp-content/plugins/chatbot-for-easy-digital-downloads/js/bootstrap.js/wp-content/plugins/chatbot-for-easy-digital-downloads/css/bootstrap.min.css/wp-content/plugins/chatbot-for-easy-digital-downloads/js/jquery.repeatable.js+6 more
Script Paths
js/cbpFWTabs.jsjs/modernizr.custom.jsjs/bootstrap.jsjs/jquery.repeatable.jsjs/qcld-woo-chatbot-admin.jsjs/slick.min.js+1 more
Version Parameters
chatbot-for-easy-digital-downloads/css/admin-style.css?ver=chatbot-for-easy-digital-downloads/css/font-awesome.min.css?ver=chatbot-for-easy-digital-downloads/css/woo-chatbot-tabs.css?ver=chatbot-for-easy-digital-downloads/js/cbpFWTabs.js?ver=chatbot-for-easy-digital-downloads/js/modernizr.custom.js?ver=chatbot-for-easy-digital-downloads/js/bootstrap.js?ver=chatbot-for-easy-digital-downloads/css/bootstrap.min.css?ver=chatbot-for-easy-digital-downloads/js/jquery.repeatable.js?ver=chatbot-for-easy-digital-downloads/js/qcld-woo-chatbot-admin.js?ver=chatbot-for-easy-digital-downloads/js/slick.min.js?ver=chatbot-for-easy-digital-downloads/css/slick.css?ver=chatbot-for-easy-digital-downloads/css/slick-theme.css?ver=chatbot-for-easy-digital-downloads/css/edd-chatbot-style.css?ver=chatbot-for-easy-digital-downloads/js/edd-chatbot-script.js?ver=

HTML / DOM Fingerprints

CSS Classes
qcld-eddbot-container
HTML Comments
<!-- qcld-eddbot-container -->
JS Globals
qcld_eddbot_obj
FAQ

Frequently Asked Questions about ChatBot for Easy Digital Downloads