Does chatpod ai have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is chatpod ai compatible with WordPress 6.9.4?

According to WordPress.org data, chatpod ai 1.8.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is chatpod ai compatible with PHP 7.4+?

chatpod ai requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is chatpod ai updated?

chatpod ai was last updated on Apr 11, 2026. Frequent updates are generally a positive security signal.

What is chatpod ai's security score?

chatpod ai has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

chatpod ai Security & Risk Analysis

wordpress.org/plugins/chatpod-ai

AI-powered sales and support agent for WooCommerce stores. Drives sales, handles support, and captures leads 24/7.

0 active installs v1.8.0 PHP 7.4+ WP 6.2+ Updated Apr 11, 2026

ai-chatbotcustomer-supportlive-chatsales-assistantwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is chatpod ai Safe to Use in 2026?

Generally Safe

Score 100/100

chatpod ai has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The chatpod-ai plugin v1.8.0 demonstrates a generally positive security posture with regards to data handling, featuring 100% properly escaped output and 100% of SQL queries using prepared statements. The absence of dangerous functions, file operations, and known vulnerabilities in its history are also strong indicators of good development practices.

However, a significant concern arises from the attack surface analysis. The plugin exposes 8 AJAX handlers that lack authentication checks. This presents a substantial risk, as any unauthenticated user could potentially interact with these handlers, leading to unintended actions or information disclosure depending on their functionality. The plugin also has 4 REST API routes, although these do have permission callbacks, which is a positive sign for API security.

While the plugin has no recorded vulnerabilities or CVEs, the presence of unprotected AJAX handlers warrants caution. The lack of historical vulnerabilities is positive, but it does not negate the current risk posed by the exposed entry points. The plugin's strengths lie in its secure data handling and absence of critical code-level flaws. The primary weakness is the direct exposure of AJAX functionalities without proper access control, which could be exploited.

Key Concerns

AJAX handlers without authentication checks

Vulnerabilities

None known

chatpod ai Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

chatpod ai Release Timeline

v1.8.0Current

Code Analysis

Analyzed Apr 16, 2026

chatpod ai Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

51 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared4 total queries

Output Escaping

100% escaped51 total outputs

Attack Surface

8 unprotected

chatpod ai Attack Surface

Entry Points13

Unprotected8

AJAX Handlers 8

authwp_ajax_chatpod_get_cartincludes/class-cart-ajax.php:6

noprivwp_ajax_chatpod_get_cartincludes/class-cart-ajax.php:7

authwp_ajax_chatpod_add_to_cartincludes/class-cart-ajax.php:8

noprivwp_ajax_chatpod_add_to_cartincludes/class-cart-ajax.php:9

authwp_ajax_chatpod_update_cartincludes/class-cart-ajax.php:10

noprivwp_ajax_chatpod_update_cartincludes/class-cart-ajax.php:11

authwp_ajax_chatpod_remove_from_cartincludes/class-cart-ajax.php:12

noprivwp_ajax_chatpod_remove_from_cartincludes/class-cart-ajax.php:13

REST API Routes 4

GET/wp-json/chatpod/v1/products-final-pricesincludes/rest-api.php:25

GET/wp-json/chatpod/v1/debug-product-attributesincludes/rest-api.php:33

GET/wp-json/custom/v1/chatbot-rulesincludes/rest-api.php:41

GET/wp-json/chatpod/v1/sync-contentincludes/rest-api.php:48

Shortcodes 1

[chatpod_search_bar] includes/widget.php:78

WordPress Hooks 20

actionadmin_initincludes/admin.php:30

actionadmin_menuincludes/admin.php:35

actionwoocommerce_add_to_cartincludes/automations.php:90

actionwoocommerce_cart_item_removedincludes/automations.php:106

actionwoocommerce_after_cart_item_quantity_updateincludes/automations.php:121

actiontemplate_redirectincludes/automations.php:196

actionwoocommerce_add_to_cartincludes/automations.php:206

actionwoocommerce_cart_item_removedincludes/automations.php:207

actionwoocommerce_after_cart_item_quantity_updateincludes/automations.php:208

actionwoocommerce_checkout_order_processedincludes/automations.php:269

actionwoocommerce_order_status_changedincludes/automations.php:313

actionwoocommerce_loadedincludes/class-cart-ajax.php:118

actionrest_api_initincludes/rest-api.php:23

filterrest_pre_dispatchincludes/rest-api.php:56

filterwoocommerce_set_cart_cookiesincludes/rest-api.php:58

filterwc_session_use_secure_cookieincludes/rest-api.php:59

filterrest_post_dispatchincludes/rest-api.php:69

filterwoocommerce_add_to_cart_validationincludes/rest-products.php:115

filterscript_loader_tagincludes/widget.php:61

actionwp_enqueue_scriptsincludes/widget.php:72

Maintenance & Trust

chatpod ai Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 11, 2026

PHP min version7.4

Downloads47

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

chatpod ai Alternatives

Live Chat & AI Chatbot – onWebChat

onwebchat

Add live chat and a 24/7 AI chatbot to your site. Engage visitors instantly, automate support, and convert more visitors into customers.

700 1 CVE

ILACHAT – AI Chatbot & Live Chat

ilachat

100

AI-powered chatbot and live chat for WordPress & WooCommerce. Boost support, sales, and lead capture with real-time data.

200 No CVEs

ReplyIt Chat Widget

replyit-chat-widget

100

AI-powered chat widget with WooCommerce and blog content integration for automated customer support and sales.

0 No CVEs

YZ Chatbot – AI Powered Live Chat & Customer Support

yz-chatbot-ai-powered-live-chat-customer-support

100

AI-powered chatbot widget for WordPress. Transform your website into a smart customer service agent in 30 seconds. Powered by Google Gemini AI.

0 No CVEs

AxiaChat AI – Free AI Chatbot (Answers Customers Automatically)

axiachat-ai

100

The best AI Chatbot for WordPress. Like having ChatGPT trained on your content — turn your site into a 24/7 sales & support machine.

1K No CVEs

Developer Profile

chatpod ai Developer Profile

chatpod ai

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect chatpod ai

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/chatpod-ai/widget/loader.js

Script Paths

https://chatpod-ai.b-cdn.net/widget/loader.js

Version Parameters

chatpod-ai/widget/loader.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-plugin-versiondata-store-urldata-checkout-urldata-noncedata-offsetxdata-offsety+4 more

REST Endpoints

/chatpod/v1/products-final-prices/chatpod/v1/debug-product-attributes/custom/v1/chatbot-rules/chatpod/v1/sync-content

Shortcode Output

<div id="chatpod-search-bar-placeholder"></div>

FAQ