Does Contact Chat Widget have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Contact Chat Widget compatible with WordPress 6.7.5?

According to WordPress.org data, Contact Chat Widget 1.3 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Contact Chat Widget compatible with PHP 7.0+?

Contact Chat Widget requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Contact Chat Widget updated?

Contact Chat Widget was last updated on Jan 21, 2025. Frequent updates are generally a positive security signal.

What is Contact Chat Widget's security score?

Contact Chat Widget has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Contact Chat Widget Security & Risk Analysis

wordpress.org/plugins/contact-chat-widget

A customizable WhatsApp chat button for instant customer interaction.

0 active installs v1.3 PHP 7.0+ WP 5.0+ Updated Jan 21, 2025

buttonchatcontactsupportwidget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Contact Chat Widget Safe to Use in 2026?

Generally Safe

Score 92/100

Contact Chat Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The 'contact-chat-widget' plugin v1.3 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of dangerous functions, external HTTP requests, file operations, and the consistent use of prepared statements for SQL queries are excellent security practices. Furthermore, the plugin properly escapes all output and includes a nonce check and capability check, demonstrating a good understanding of WordPress security fundamentals. The vulnerability history is clean, with no known CVEs, indicating a potentially well-maintained and secure plugin.

Despite the overall positive assessment, the analysis reveals an attack surface of zero entry points. While this is generally a good sign, it could also indicate that the plugin might not offer significant dynamic functionality that would require such entry points, or that they are exceptionally well-hidden. The taint analysis showing only two flows with no unsanitized paths further reinforces the lack of apparent direct vulnerabilities.

In conclusion, 'contact-chat-widget' v1.3 appears to be a secure plugin with no immediate exploitable vulnerabilities identified in this analysis. Its adherence to best practices in coding and its clean vulnerability record are commendable. The primary area to potentially scrutinize further would be the very limited attack surface, though this doesn't constitute a current risk based on the data.

Vulnerabilities

None known

Contact Chat Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Contact Chat Widget Release Timeline

v1.3Current

v1.2

v1.0

Code Analysis

Analyzed Apr 16, 2026

Contact Chat Widget Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

36 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped36 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

bheema_ccw_settings_page (contact-chat-widget.php:61)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Contact Chat Widget Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionwp_enqueue_scriptscontact-chat-widget.php:25

actionwp_footercontact-chat-widget.php:44

actionadmin_menucontact-chat-widget.php:58

Maintenance & Trust

Contact Chat Widget Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedJan 21, 2025

PHP min version7.0

Downloads714

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Contact Chat Widget Alternatives

Sticky Chat Widget – Floating Chat Icons, Contact Form, Call, Click to Chat, Email & Message Buttons

sticky-chat-widget

100

Social chat buttons with WhatsApp, Messenger, WeChat, Telegram, Instagram, TikTok, Zalo & more — plus SMS, Call button, Contact form, and 20+ icons.

10K 1 CVE

WP Click to Chat – Email, Live Chat, Call & Book Now Buttons

support-chat

Offer unlimited chat apps and support channels to your WordPress website.

1K 3 CVEs

NXT Floating Chat Widget

nxt-floating-chat-widget

100

A lightweight, customizable WhatsApp floating button with position, size options, and optional click tracking.

10 No CVEs

Chat Widget for FlowFunnel

chat-widget-for-flowfunnel

100

Add a floating WhatsApp chat widget to your WordPress site with customizable styles, inquiry options, and click analytics.

0 No CVEs

Floating Contact Widget: Chat & Call

floating-contact-widget-chat-call

A floating chat and call widget for WordPress. Add WhatsApp chat & call buttons to your site for quick customer interaction.

0 No CVEs

Developer Profile

Contact Chat Widget Developer Profile

Bheema Dharmatheja

1 plugin · 0 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Contact Chat Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/contact-chat-widget/style.css

HTML / DOM Fingerprints

CSS Classes

bheema_ccw-chat-buttonbheema-ccw-icon

Data Attributes

data-placementdata-margin

FAQ