WP-Safety

Desku.io – Live Chat, Help Desk & Knowledge Base Security & Risk Analysis

wordpress.org/plugins/desku-livechat-ai-chatbot

AI customer service software for WordPress—live chat, instant replies & a smart knowledge base to boost support in minutes.

0 active installs v0.0.2 PHP 5.5+ WP + Updated Apr 14, 2025
ai-powered-customer-supportecommerce-customer-supporthelp-desklive-chatno-code-chatbot-builder
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Desku.io – Live Chat, Help Desk & Knowledge Base Safe to Use in 2026?

Generally Safe

Score 100/100

Desku.io – Live Chat, Help Desk & Knowledge Base has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11mo ago
Risk Assessment

The "desku-livechat-ai-chatbot" plugin v0.0.2 exhibits a generally positive security posture based on the provided static analysis. The plugin has no known CVEs, a clean vulnerability history, and employs good practices such as using prepared statements for all SQL queries and having a high percentage of properly escaped outputs. The absence of taint flows and critical/high severity issues in the taint analysis further reinforces this good standing. However, there are areas for improvement. While all AJAX handlers have nonce checks, the absence of capability checks across all entry points, including AJAX handlers, is a significant concern. This means that any authenticated user, regardless of their role, could potentially trigger these AJAX actions. The presence of external HTTP requests also warrants attention, as these can be vectors for further vulnerabilities if not handled with extreme care, though no specific issues were flagged here. Overall, the plugin is well-coded in terms of common pitfalls, but the lack of granular access control is its primary weakness.

Key Concerns

  • Missing capability checks on AJAX handlers
Vulnerabilities
None known

Desku.io – Live Chat, Help Desk & Knowledge Base Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Desku.io – Live Chat, Help Desk & Knowledge Base Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
21 escaped
Nonce Checks
5
Capability Checks
0
File Operations
0
External Requests
1
Bundled Libraries
0

Output Escaping

95% escaped22 total outputs
Attack Surface

Desku.io – Live Chat, Help Desk & Knowledge Base Attack Surface

Entry Points5
Unprotected0

AJAX Handlers 5

authwp_ajax_desku_loginincludes\class-desku-admin.php:16
authwp_ajax_desku_logoutincludes\class-desku-admin.php:17
authwp_ajax_desku_save_widgetincludes\class-desku-admin.php:18
authwp_ajax_desku_get_widgetsincludes\class-desku-admin.php:19
authwp_ajax_desku_uninstall_widgetincludes\class-desku-admin.php:20
WordPress Hooks 5
actionplugins_loadeddesku-chat-widget.php:97
actionadmin_menuincludes\class-desku-admin.php:14
actionadmin_enqueue_scriptsincludes\class-desku-admin.php:15
actionadmin_initincludes\class-desku-admin.php:21
actionwp_footerincludes\class-desku-public.php:12
Maintenance & Trust

Desku.io – Live Chat, Help Desk & Knowledge Base Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedApr 14, 2025
PHP min version5.5
Downloads1K

Community Trust

Rating100/100
Number of ratings2
Active installs0
Alternatives

Desku.io – Live Chat, Help Desk & Knowledge Base Alternatives

Live Chat with Messenger Customer Chat

Live Chat with Messenger Customer Chat

fb-messenger-live-chat

A
99

Support your customers via Facebook Messenger Live Chat conveniently from your own website.

3K 1 CVE
Re:amaze Helpdesk & Live Chat

Re:amaze Helpdesk & Live Chat

reamaze

A
92

Boost sales conversions, loyalty, and engagement. Manage your social, email, sms, live chat, FAQ for your WordPress or WooCommerce store.

400 1 CVE
AI Live Chat

AI Live Chat

wp-iclew

A
85

Provide live technical assistance to users, give them reasons to buy your product! The Agent scans your website to learn relevant answers to user ques …

10 No CVEs
Kust AI – Smart Customer Support Chatbot & Help Desk

Kust AI – Smart Customer Support Chatbot & Help Desk

kust-ai-widget

A
100

AI-powered customer support chatbot that resolves 97% of tickets automatically. Multi-language support, live chat, analytics, and seamless WordPress i …

0 No CVEs
Reacho – Free Customer Support Plugin for WooCommerce

Reacho – Free Customer Support Plugin for WooCommerce

reacho-for-woocommerce

A
100

Boost WooCommerce engagement with Reacho's automation, help desk, and live chat. Manage all interactions in one place—no coding needed.

0 No CVEs
Developer Profile

Desku.io – Live Chat, Help Desk & Knowledge Base Developer Profile

wphelpdeskuk

5 plugins · 540 total installs

86
trust score
Avg Security Score
88/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Desku.io – Live Chat, Help Desk & Knowledge Base

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/desku-livechat-ai-chatbot/assets/css/main.css/wp-content/plugins/desku-livechat-ai-chatbot/assets/js/admin.js/wp-content/plugins/desku-livechat-ai-chatbot/assets/js/public.js
Generator Patterns
Desku
Version Parameters
desku-main-cssdesku-admin-jsdesku-public-js

HTML / DOM Fingerprints

CSS Classes
desku-widget-containerdesku-chat-bubbledesku-chat-messagedesku-input-areadesku-widget-header
HTML Comments
<!-- Desku AI Chatbot Widget --><!-- End Desku AI Chatbot Widget --><!-- Desku Chat Widget Wrapper -->
Data Attributes
data-desku-widget-iddata-desku-api-urldata-desku-auth-token
JS Globals
deskuChatConfigDeskuWidget
REST Endpoints
/wp-json/desku/v1/chat/wp-json/desku/v1/history
Shortcode Output
[desku_chat_widget]
FAQ

Frequently Asked Questions about Desku.io – Live Chat, Help Desk & Knowledge Base