Does ConvertyBot – AI Sales Assistant for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in ConvertyBot – AI Sales Assistant for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is ConvertyBot – AI Sales Assistant for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, ConvertyBot – AI Sales Assistant for WooCommerce 1.0.32 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is ConvertyBot – AI Sales Assistant for WooCommerce compatible with PHP 7.2+?

ConvertyBot – AI Sales Assistant for WooCommerce requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is ConvertyBot – AI Sales Assistant for WooCommerce's security score?

ConvertyBot – AI Sales Assistant for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ConvertyBot – AI Sales Assistant for WooCommerce Security & Risk Analysis

wordpress.org/plugins/convertybot

Transform your WooCommerce store into a 24/7 sales machine! AI-powered chatbot that recommends products, generates coupons, and converts visitors into …

0 active installs v1.0.32 PHP 7.2+ WP 5.0+ Updated Feb 25, 2026

aichatbotecommercesaleswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is ConvertyBot – AI Sales Assistant for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

ConvertyBot – AI Sales Assistant for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The Convertybot plugin v1.0.32 presents a mixed security posture. On the positive side, it shows good practices regarding SQL queries, with a high percentage utilizing prepared statements, and a strong emphasis on output escaping, with over 90% of outputs properly handled. The absence of known CVEs and a clean vulnerability history are also significant strengths, suggesting a history of responsible development and patching. Furthermore, the plugin avoids dangerous functions and file operations, which are common attack vectors. However, the plugin has a notable concern regarding its attack surface. It exposes 71 AJAX handlers, and a significant portion (4) lack any authentication checks. This is a critical oversight that could allow unauthenticated users to trigger plugin functionality. Additionally, the taint analysis reveals 11 high-severity flows with unsanitized paths. While these are not explicitly marked as vulnerabilities in the history, unsanitized paths can often lead to exploitable conditions if not properly handled. The combination of unprotected AJAX endpoints and high-severity unsanitized flows indicates a potential for privilege escalation or denial-of-service vulnerabilities.

Key Concerns

Unprotected AJAX handlers
High severity unsanitized taint flows

Vulnerabilities

None known

ConvertyBot – AI Sales Assistant for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

ConvertyBot – AI Sales Assistant for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

122 prepared

Unescaped Output

807 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

79% prepared154 total queries

Output Escaping

91% escaped882 total outputs

Data Flows

11 unsanitized

Data Flow Analysis

19 flows11 with unsanitized paths

ajax_load_conversation (includes\class-admin.php:905)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

ConvertyBot – AI Sales Assistant for WooCommerce Attack Surface

Entry Points71

Unprotected4

AJAX Handlers 71

authwp_ajax_convertybot_test_connectionincludes\class-admin.php:33

authwp_ajax_convertybot_export_productsincludes\class-admin.php:34

authwp_ajax_convertybot_save_settingsincludes\class-admin.php:35

authwp_ajax_convertybot_load_conversationsincludes\class-admin.php:38

authwp_ajax_convertybot_load_conversationincludes\class-admin.php:39

authwp_ajax_convertybot_export_conversationsincludes\class-admin.php:40

authwp_ajax_convertybot_save_noteincludes\class-admin.php:41

authwp_ajax_convertybot_save_tagsincludes\class-admin.php:42

authwp_ajax_convertybot_get_conversation_tagsincludes\class-admin.php:43

authwp_ajax_convertybot_delete_conversationsincludes\class-admin.php:44

authwp_ajax_convertybot_update_conversation_statusincludes\class-admin.php:45

authwp_ajax_convertybot_add_conversation_tagincludes\class-admin.php:46

authwp_ajax_convertybot_create_checkoutincludes\class-admin.php:49

authwp_ajax_convertybot_customer_portalincludes\class-admin.php:50

authwp_ajax_convertybot_toggle_coupon_ruleincludes\class-admin.php:53

authwp_ajax_convertybot_create_coupon_ruleincludes\class-admin.php:54

authwp_ajax_convertybot_update_coupon_ruleincludes\class-admin.php:55

authwp_ajax_convertybot_get_coupon_ruleincludes\class-admin.php:56

authwp_ajax_convertybot_delete_coupon_ruleincludes\class-admin.php:57

authwp_ajax_convertybot_search_productsincludes\class-admin.php:58

authwp_ajax_convertybot_search_categoriesincludes\class-admin.php:59

authwp_ajax_convertybot_refresh_analyticsincludes\class-admin.php:62

authwp_ajax_convertybot_export_analyticsincludes\class-admin.php:63

authwp_ajax_convertybot_get_analytics_dataincludes\class-admin.php:64

authwp_ajax_convertybot_get_engagement_overviewincludes\class-admin.php:67

authwp_ajax_convertybot_get_engagement_sessionsincludes\class-admin.php:68

authwp_ajax_convertybot_get_session_journeyincludes\class-admin.php:69

authwp_ajax_convertybot_get_wp_user_infoincludes\class-admin.php:72

authwp_ajax_convertybot_register_shopincludes\class-admin.php:75

authwp_ajax_convertybot_save_consentincludes\class-consent-banner.php:41

noprivwp_ajax_convertybot_save_consentincludes\class-consent-banner.php:42

authwp_ajax_convertybot_get_consentincludes\class-consent-banner.php:44

noprivwp_ajax_convertybot_get_consentincludes\class-consent-banner.php:45

authwp_ajax_convertybot_chatincludes\class-frontend.php:39

noprivwp_ajax_convertybot_chatincludes\class-frontend.php:40

authwp_ajax_convertybot_start_sessionincludes\class-frontend.php:42

noprivwp_ajax_convertybot_start_sessionincludes\class-frontend.php:43

authwp_ajax_convertybot_get_productsincludes\class-frontend.php:45

noprivwp_ajax_convertybot_get_productsincludes\class-frontend.php:46

authwp_ajax_convertybot_track_eventincludes\class-frontend.php:48

noprivwp_ajax_convertybot_track_eventincludes\class-frontend.php:49

authwp_ajax_convertybot_manual_syncincludes\class-product-sync.php:56

authwp_ajax_convertybot_sync_single_productincludes\class-product-sync.php:57

authwp_ajax_convertybot_end_sessionincludes\class-user-profile.php:35

noprivwp_ajax_convertybot_end_sessionincludes\class-user-profile.php:36

authwp_ajax_convertybot_migrate_guest_dataincludes\class-user-profile.php:39

noprivwp_ajax_convertybot_migrate_guest_dataincludes\class-user-profile.php:40

authwp_ajax_convertybot_track_sessionincludes\class-user-tracking-enhanced.php:48

noprivwp_ajax_convertybot_track_sessionincludes\class-user-tracking-enhanced.php:49

authwp_ajax_convertybot_track_events_batchincludes\class-user-tracking-enhanced.php:51

noprivwp_ajax_convertybot_track_events_batchincludes\class-user-tracking-enhanced.php:52

authwp_ajax_convertybot_track_product_interactionincludes\class-user-tracking-enhanced.php:54

noprivwp_ajax_convertybot_track_product_interactionincludes\class-user-tracking-enhanced.php:55

authwp_ajax_convertybot_track_conversionincludes\class-user-tracking-enhanced.php:57

noprivwp_ajax_convertybot_track_conversionincludes\class-user-tracking-enhanced.php:58

authwp_ajax_convertybot_ab_test_assignmentsincludes\class-user-tracking-enhanced.php:60

noprivwp_ajax_convertybot_ab_test_assignmentsincludes\class-user-tracking-enhanced.php:61

authwp_ajax_convertybot_privacy_consent_statusincludes\class-user-tracking-enhanced.php:63

noprivwp_ajax_convertybot_privacy_consent_statusincludes\class-user-tracking-enhanced.php:64

authwp_ajax_convertybot_realtime_startincludes\class-user-tracking-enhanced.php:66

noprivwp_ajax_convertybot_realtime_startincludes\class-user-tracking-enhanced.php:67

authwp_ajax_convertybot_session_endincludes\class-user-tracking-enhanced.php:69

noprivwp_ajax_convertybot_session_endincludes\class-user-tracking-enhanced.php:70

authwp_ajax_convertybot_track_page_viewincludes\class-user-tracking.php:39

noprivwp_ajax_convertybot_track_page_viewincludes\class-user-tracking.php:40

authwp_ajax_convertybot_track_scrollincludes\class-user-tracking.php:42

noprivwp_ajax_convertybot_track_scrollincludes\class-user-tracking.php:43

authwp_ajax_convertybot_track_clickincludes\class-user-tracking.php:45

noprivwp_ajax_convertybot_track_clickincludes\class-user-tracking.php:46

authwp_ajax_convertybot_track_timeincludes\class-user-tracking.php:48

noprivwp_ajax_convertybot_track_timeincludes\class-user-tracking.php:49

WordPress Hooks 48

actionadmin_noticesconvertybot.php:26

actionplugins_loadedconvertybot.php:90

actionadmin_noticesconvertybot.php:116

actionadmin_menuincludes\class-admin.php:29

actionadmin_initincludes\class-admin.php:30

actionadmin_enqueue_scriptsincludes\class-admin.php:31

actionadmin_noticesincludes\class-admin.php:32

actionconvertybot_daily_analyticsincludes\class-analytics.php:30

actionconvertybot_cleanup_sessionsincludes\class-analytics.php:37

actionrest_api_initincludes\class-api.php:29

actionwp_enqueue_scriptsincludes\class-consent-banner.php:36

actionwp_footerincludes\class-consent-banner.php:37

filterwoocommerce_coupon_is_validincludes\class-coupon-manager.php:30

actionwoocommerce_applied_couponincludes\class-coupon-manager.php:33

actionwoocommerce_checkout_order_processedincludes\class-coupon-manager.php:41

actionwoocommerce_order_status_processingincludes\class-coupon-manager.php:42

actionwoocommerce_order_status_completedincludes\class-coupon-manager.php:43

actionwoocommerce_payment_completeincludes\class-coupon-manager.php:44

actionconvertybot_cleanup_couponsincludes\class-coupon-manager.php:47

actionshutdownincludes\class-coupon-manager.php:779

actionwp_enqueue_scriptsincludes\class-frontend.php:53

actionwp_footerincludes\class-frontend.php:54

filterhttp_request_argsincludes\class-product-sync.php:30

actionwoocommerce_new_productincludes\class-product-sync.php:33

actionwoocommerce_update_productincludes\class-product-sync.php:34

actionbefore_delete_postincludes\class-product-sync.php:35

actionwoocommerce_product_set_stockincludes\class-product-sync.php:38

actionwoocommerce_variation_set_stockincludes\class-product-sync.php:39

actionwoocommerce_product_set_stock_statusincludes\class-product-sync.php:42

actioncomment_postincludes\class-product-sync.php:45

actionwp_set_comment_statusincludes\class-product-sync.php:46

actionconvertybot_sync_productsincludes\class-product-sync.php:49

actionwoocommerce_order_status_completedincludes\class-user-profile.php:31

actionwoocommerce_thankyouincludes\class-user-profile.php:32

actionwp_loginincludes\class-user-profile.php:43

actionuser_registerincludes\class-user-profile.php:44

actionwoocommerce_created_customerincludes\class-user-profile.php:45

actionwp_enqueue_scriptsincludes\class-user-tracking-enhanced.php:73

actionwp_enqueue_scriptsincludes\class-user-tracking-enhanced.php:74

actionwp_enqueue_scriptsincludes\class-user-tracking-enhanced.php:75

actionwoocommerce_add_to_cartincludes\class-user-tracking-enhanced.php:78

actionwoocommerce_thankyouincludes\class-user-tracking-enhanced.php:82

actionwp_enqueue_scriptsincludes\class-user-tracking.php:36

actionwoocommerce_add_to_cartincludes\class-user-tracking.php:52

actionwoocommerce_cart_item_removedincludes\class-user-tracking.php:53

actionwoocommerce_checkout_order_processedincludes\class-user-tracking.php:54

actionconvertybot_session_startedincludes\class-user-tracking.php:57

actionconvertybot_session_endedincludes\class-user-tracking.php:58

Scheduled Events 4

convertybot_daily_analytics

convertybot_cleanup_sessions

convertybot_cleanup_coupons

convertybot_sync_products

Maintenance & Trust

ConvertyBot – AI Sales Assistant for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 25, 2026

PHP min version7.2

Downloads280

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

ConvertyBot – AI Sales Assistant for WooCommerce Alternatives

Sales Analytics for WooCommerce

sales-analytics-for-woocommerce

100

Sales Analytics for WooCommerce: detailed reports, payment analytics, AI-based insights, CSV/PDF export, multi-currency, and chart visuals.

10 No CVEs

BenriBot for WooCommerce

benribot-for-woocommerce

100

Integrates the BenriBot AI chat widget into your WooCommerce store with a modern React-based admin interface.

0 No CVEs

FukuroChat Connector

fukurochat-connector

100

Connect your WooCommerce store to FukuroChat AI Assistant. Automatic product sync, intelligent chatbot widget, and seamless integration.

0 No CVEs

MailerLite – WooCommerce integration

woo-mailerlite

Powerful e-commerce email marketing tools that are easy to use. Grow your store with automated emails, pop-ups, product blocks, sales tracking + more.

30K 4 CVEs

ActiveCampaign for WooCommerce

activecampaign-for-woocommerce

100

https://youtu.be/wHPrLFXQTgQ

6K 1 CVE

Developer Profile

ConvertyBot – AI Sales Assistant for WooCommerce Developer Profile

2wstechnologies

3 plugins · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect ConvertyBot – AI Sales Assistant for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/convertybot/assets/css/chatbot.css/wp-content/plugins/convertybot/assets/css/vendor/bootstrap.min.css/wp-content/plugins/convertybot/assets/js/chatbot.js/wp-content/plugins/convertybot/assets/js/vendor/bootstrap.bundle.min.js

Script Paths

/wp-content/plugins/convertybot/assets/js/chatbot.js/wp-content/plugins/convertybot/assets/js/vendor/bootstrap.bundle.min.js

Version Parameters

convertybot/assets/css/chatbot.css?ver=convertybot/assets/css/vendor/bootstrap.min.css?ver=convertybot/assets/js/chatbot.js?ver=convertybot/assets/js/vendor/bootstrap.bundle.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

convertybot-chat-containerconvertybot-headerconvertybot-messageconvertybot-input-areaconvertybot-quick-reply

HTML Comments

Data Attributes

data-convertybot-api-urldata-convertybot-widget-iddata-convertybot-product-id

JS Globals

window.convertybotAppwindow.convertybotSettingsvar convertybot_settings =

REST Endpoints

/wp-json/convertybot/v1/get_widget_settings/wp-json/convertybot/v1/send_message/wp-json/convertybot/v1/get_product_suggestions

Shortcode Output

[convertybot_chat][convertybot_widget]

FAQ