Does ChatBot for Social Media have any unpatched vulnerabilities?

No. All known vulnerabilities in ChatBot for Social Media have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is ChatBot for Social Media compatible with WordPress 5.8.13?

According to WordPress.org data, ChatBot for Social Media 0.9.9 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is ChatBot for Social Media compatible with PHP 5.6+?

ChatBot for Social Media requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ChatBot for Social Media updated?

ChatBot for Social Media was last updated on Unknown. Frequent updates are generally a positive security signal.

What is ChatBot for Social Media's security score?

ChatBot for Social Media has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ChatBot for Social Media Security & Risk Analysis

wordpress.org/plugins/chatbot-for-messenger

Messenger ChatBot. Automate your FaceBook pages. Auto Reply to comment, Auto private message in messenger from comments. A ChatBot for FaceBook Page a …

10 active installs v0.9.9 PHP 5.6+ WP 4.6+ Updated Unknown

auto-commentchatbotfacebook-messengermessenger

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is ChatBot for Social Media Safe to Use in 2026?

Generally Safe

Score 100/100

ChatBot for Social Media has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The chatbot-for-messenger plugin version 0.9.9 presents a mixed security posture. On the positive side, it has a small attack surface with all AJAX handlers protected by authentication checks. Its vulnerability history is clean, with no known CVEs, suggesting a history of secure development or diligent patching by developers. However, the static analysis reveals significant concerns. The presence of the `unserialize` function, especially without clear sanitization context, is a major red flag for potential remote code execution vulnerabilities if user-controlled data is unserialized. Furthermore, the taint analysis shows all five analyzed flows having unsanitized paths, with three flagged as high severity. This indicates a significant risk of sensitive data leakage or unauthorized actions. The SQL query preparation rate is also moderate, and a substantial portion of outputs are not properly escaped, increasing the risk of cross-site scripting (XSS) vulnerabilities. While the lack of historical vulnerabilities is a strength, the current code analysis flags several critical areas requiring immediate attention.

Key Concerns

High severity unsanitized taint flows detected
Use of potentially dangerous unserialize function
Significant portion of outputs not properly escaped
Moderate SQL query preparation rate
File operations present without explicit sanitization context

Vulnerabilities

None known

ChatBot for Social Media Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

ChatBot for Social Media Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

57 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$comments = unserialize($wpfb_campaign_comment_text);wpbot-fb-custom-posts.php:378

unserialize$all_faqs = unserialize( get_option('support_query'));wpbot-fb-messenger-functions.php:269

unserialize$faqans = unserialize(get_option('support_ans'));wpbot-fb-messenger-functions.php:273

unserialize$all_faqs = unserialize( get_option('support_query'));wpbot-fb-messenger-functions.php:810

unserialize$msgtext = unserialize(get_option('qlcd_wp_chatbot_wildcard_msg'));wpbot-fb-messenger-functions.php:870

unserialize$phonetextarray = unserialize(get_option('qlcd_wp_chatbot_support_phone'));wpbot-fb-messenger-functions.php:875

unserialize$msgtext = unserialize(get_option('qlcd_wp_chatbot_wildcard_msg'));wpbot-fb-messenger-functions.php:957

unserialize$all_faqs = unserialize( get_option('support_query'));wpbot-fb-messenger-functions.php:1055

unserialize$texts = unserialize(get_option('qlcd_wp_chatbot_asking_email'));wpbot-fb-messenger-functions.php:1115

unserialize$texts = unserialize(get_option('qlcd_wp_chatbot_search_keyword'));wpbot-fb-messenger-functions.php:1132

unserialize$texts = unserialize(get_option('qlcd_woo_chatbot_asking_email'));wpbot-fb-messenger-functions.php:1150

unserialize$texts = unserialize(get_option('qlcd_wp_chatbot_asking_msg'));wpbot-fb-messenger-functions.php:1163

unserialize$texts = unserialize(get_option('qlcd_wp_chatbot_asking_phone'));wpbot-fb-messenger-functions.php:1234

unserialize$texts = unserialize(get_option('qlcd_woo_chatbot_asking_phone'));wpbot-fb-messenger-functions.php:1249

unserialize$texts = unserialize(get_option('qlcd_wp_chatbot_asking_email'));wpbot-fb-messenger-functions.php:1292

unserialize$texts = unserialize(get_option('qlcd_wp_email_subscription_success'));wpbot-fb-messenger-functions.php:1333

unserialize$texts = unserialize(get_option('qlcd_wp_email_already_subscribe'));wpbot-fb-messenger-functions.php:1337

SQL Query Safety

46% prepared13 total queries

Output Escaping

50% escaped115 total outputs

Data Flows

5 unsanitized

Data Flow Analysis

5 flows5 with unsanitized paths

qcpd_wpfb_messenger_callback (wpbot-fb-messenger-functions.php:19)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

ChatBot for Social Media Attack Surface

Entry Points4

Unprotected0

AJAX Handlers 4

authwp_ajax_qcwpfb_reload_pages_actionwpbot-fb-ajax-handler.php:3

noprivwp_ajax_qcwpfb_reload_pages_actionwpbot-fb-ajax-handler.php:4

authwp_ajax_qcwpfb_reload_posts_actionwpbot-fb-ajax-handler.php:40

noprivwp_ajax_qcwpfb_reload_posts_actionwpbot-fb-ajax-handler.php:41

WordPress Hooks 24

actionadmin_menuadmin\wpbot-fb-admin-page.php:8

actionadmin_initadmin\wpbot-fb-admin-page.php:9

actionadmin_enqueue_scriptsadmin\wpbot-fb-admin-page.php:10

actioninitadmin\wpbot-fb-admin-page.php:11

actionadmin_post_enable_botadmin\wpbot-fb-admin-page.php:13

actionadmin_post_disable_botadmin\wpbot-fb-admin-page.php:14

actionwpbot_fb_success_msgadmin\wpbot-fb-admin-page.php:216

actionwpbot_fb_bot_enable_success_msgadmin\wpbot-fb-admin-page.php:222

actionwpbot_fb_bot_disable_success_msgadmin\wpbot-fb-admin-page.php:225

actionwpbot_fb_page_delete_msgadmin\wpbot-fb-admin-page.php:252

actioninitwpbot-fb-custom-posts.php:63

filtermanage_wpfbposts_posts_columnswpbot-fb-custom-posts.php:69

actionmanage_wpfbposts_posts_custom_columnwpbot-fb-custom-posts.php:79

filterviews_edit-wpfbpostswpbot-fb-custom-posts.php:99

actionrestrict_manage_postswpbot-fb-custom-posts.php:132

filterparse_querywpbot-fb-custom-posts.php:149

actionadd_meta_boxeswpbot-fb-custom-posts.php:171

actionsave_postwpbot-fb-custom-posts.php:522

actioninitwpbot-fb-messenger-addon.php:32

actionadmin_noticeswpbot-fb-messenger-addon.php:37

actionactivated_pluginwpbot-fb-messenger-addon.php:58

actionplugins_loadedwpbot-fb-messenger-addon.php:69

actioninitwpbot-fb-messenger-addon.php:72

actioninitwpbot-fb-messenger-functions.php:1449

Maintenance & Trust

ChatBot for Social Media Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedUnknown

PHP min version5.6

Downloads5K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

ChatBot for Social Media Alternatives

Block Editor for ManyChat

block-editor-for-manychat

Easily add ManyChat widgets to your site.

100 No CVEs

Joinchat

creame-whatsapp-me

100

WhatsApp, Messenger, Telegram, Phone call… capture users through their favorite Apps and turn into clients

700K No CVEs

Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button – Chaty

chaty

WhatsApp chat, Facebook Messenger, Telegram, TikTok, Instagram, Email, Line, WeChat Phone call, SMS, 20+ live chat icons & WhatsApp chat pop up 💬

400K 11 CVEs

All-in-one Sticky Floating Contact Form, Call, Click to Chat, and 50+ Social Icon Tabs – My Sticky Elements

mystickyelements

Get leads with a floating contact form tab, chat & social buttons like Facebook Messenger, WhatsApp, Viber, Telegram, Twitter, Instagram & more 🎉

40K 6 CVEs

Chat Widget: Floating Customer Support Button for 30+ Channels, Supporting SMS, Calls, and Chat – Bit Assist

bit-assist

Floating sticky chat button for WhatsApp Chat, Facebook Messenger, Telegram, Instagram, SMS, Call, Discord chat, TikTok, Line & 30+ channels

10K 7 CVEs

Developer Profile

ChatBot for Social Media Developer Profile

QuantumCloud

29 plugins · 26K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

255 days

View full developer profile

Detection Fingerprints

How We Detect ChatBot for Social Media

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/chatbot-for-messenger/assets/css/jquery.datetimepicker.min.css/wp-content/plugins/chatbot-for-messenger/assets/css/style.css/wp-content/plugins/chatbot-for-messenger/assets/css/font-awesome.min.css/wp-content/plugins/chatbot-for-messenger/assets/js/jquery.datetimepicker.full.min.js/wp-content/plugins/chatbot-for-messenger/assets/js/admin_script.js

Script Paths

/wp-content/plugins/chatbot-for-messenger/assets/js/jquery.datetimepicker.full.min.js/wp-content/plugins/chatbot-for-messenger/assets/js/admin_script.js

HTML / DOM Fingerprints

CSS Classes

rlrsssl-success

Data Attributes

data-role

JS Globals

object

FAQ