WP-Safety

ChipBot – Video, Live Chat, & AI Help Desk Security & Risk Analysis

wordpress.org/plugins/chipbot

ChipBot turns your website into a face-to-face story experience powered by AI, video, and chat.

100 active installs v2.0.5 PHP 7.0+ WP 6.0+ Updated Oct 13, 2025
aicustomer-supporthelp-deskleadsvideos
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is ChipBot – Video, Live Chat, & AI Help Desk Safe to Use in 2026?

Generally Safe

Score 100/100

ChipBot – Video, Live Chat, & AI Help Desk has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7mo ago
Risk Assessment

Based on the provided static analysis and vulnerability history, the "chipbot" v2.0.5 plugin exhibits a strong security posture. The absence of any identified CVEs and a clean vulnerability history are positive indicators. The plugin demonstrates good practices by not exposing a large attack surface with no AJAX handlers, REST API routes, shortcodes, or cron events that lack authentication or permission checks. Furthermore, the code signals show a commendable absence of dangerous functions and external HTTP requests, alongside the exclusive use of prepared statements for SQL queries.

However, a significant concern arises from the complete lack of output escaping. With 17 total outputs analyzed and 0% properly escaped, this presents a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. Any user-supplied data that is displayed on the frontend without proper sanitization or escaping could be exploited by attackers to inject malicious scripts. While the plugin has a nonce check, the lack of capability checks and the complete lack of output escaping are critical weaknesses that overshadow the otherwise positive findings.

Key Concerns

  • All output is unescaped
  • No capability checks
Vulnerabilities
None known

ChipBot – Video, Live Chat, & AI Help Desk Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

ChipBot – Video, Live Chat, & AI Help Desk Release Timeline

v2.0.5Current
v2.0.4
v2.0.3
v2.0.2
v2.0.1
v2.0.0
v1.0.18
v1.0.17
v1.0.16
v1.0.15
v1.0.14
v1.0.13
v1.0.12
v1.0.11
v1.0.10
v1.0.9
v1.0.7
v1.0.5
v1.0.4
v1.0.3
Code Analysis
Analyzed Mar 16, 2026

ChipBot – Video, Live Chat, & AI Help Desk Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
17
0 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

0% escaped17 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

1 flows
<settings> (settings.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

ChipBot – Video, Live Chat, & AI Help Desk Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 5
actionadmin_menuchipbot.php:17
actionadmin_initchipbot.php:18
actionwp_headchipbot.php:19
actionwp_headchipbot.php:20
actionadmin_enqueue_scriptschipbot.php:21
Maintenance & Trust

ChipBot – Video, Live Chat, & AI Help Desk Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedOct 13, 2025
PHP min version7.0
Downloads8K

Community Trust

Rating100/100
Number of ratings3
Active installs100
Alternatives

ChipBot – Video, Live Chat, & AI Help Desk Alternatives

Re:amaze Helpdesk & Live Chat

Re:amaze Helpdesk & Live Chat

reamaze

A
92

Boost sales conversions, loyalty, and engagement. Manage your social, email, sms, live chat, FAQ for your WordPress or WooCommerce store.

400 1 CVE
Desku.io – Live Chat, Help Desk & Knowledge Base

Desku.io – Live Chat, Help Desk & Knowledge Base

desku-livechat-ai-chatbot

A
92

AI customer service software for WordPress—live chat, instant replies & a smart knowledge base to boost support in minutes.

0 No CVEs
Highleads

Highleads

highleads

A
100

Automatically embed the Highleads chatbot on your WordPress site for enhanced lead generation and customer support.

0 No CVEs
Kust AI – Smart Customer Support Chatbot & Help Desk

Kust AI – Smart Customer Support Chatbot & Help Desk

kust-ai-widget

A
100

AI-powered customer support chatbot that resolves 97% of tickets automatically. Multi-language support, live chat, analytics, and seamless WordPress i &hellip;

0 No CVEs
ViviChat Website Assistant

ViviChat Website Assistant

vivichat-website-assistant

A
100

Easily add the ViviChat website assistant to help your visitors get information about products and services.

0 No CVEs
Developer Profile

ChipBot – Video, Live Chat, & AI Help Desk Developer Profile

Matt Lo

1 plugin · 100 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect ChipBot – Video, Live Chat, & AI Help Desk

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/chipbot/styles.css
Script Paths
https://static.getchipbot.com/edge/p/chipbot.js

HTML / DOM Fingerprints

JS Globals
CHIPBOT_ID
FAQ

Frequently Asked Questions about ChipBot – Video, Live Chat, & AI Help Desk