Does EngageDock AI – Smart Support Assistant have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is EngageDock AI – Smart Support Assistant compatible with WordPress 6.9.4?

According to WordPress.org data, EngageDock AI – Smart Support Assistant 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is EngageDock AI – Smart Support Assistant compatible with PHP 7.4+?

EngageDock AI – Smart Support Assistant requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is EngageDock AI – Smart Support Assistant updated?

EngageDock AI – Smart Support Assistant was last updated on Apr 15, 2026. Frequent updates are generally a positive security signal.

What is EngageDock AI – Smart Support Assistant's security score?

EngageDock AI – Smart Support Assistant has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

EngageDock AI – Smart Support Assistant Security & Risk Analysis

wordpress.org/plugins/engagedock-ai-smart-support-assistant

Floating contact widget with click-to-call, click-to-text, callback form, business hours, vCard, and analytics.

0 active installs v1.0.0 PHP 7.4+ WP 6.0+ Updated Apr 15, 2026

business-hourscallback-formclick-to-callcontact-widgetfloating-contact-button

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is EngageDock AI – Smart Support Assistant Safe to Use in 2026?

Generally Safe

Score 100/100

EngageDock AI – Smart Support Assistant has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The engagedock-ai-smart-support-assistant plugin v1.0.0 exhibits a generally strong security posture based on static analysis. The complete absence of dangerous functions, 100% output escaping, and a high percentage of prepared SQL statements are commendable practices. The lack of any recorded vulnerabilities or CVEs in its history further suggests a well-maintained and secure codebase. However, a significant concern arises from the presence of four unprotected REST API routes. This creates a direct attack vector that could be exploited if these routes handle sensitive data or actions without proper authentication or authorization checks.

While the plugin demonstrates good development hygiene in many areas, these unprotected REST API endpoints represent a tangible risk. The limited number of file operations and external HTTP requests, along with the presence of nonce and capability checks on many entry points, are positive indicators. Nevertheless, the critical nature of unauthenticated access points cannot be overstated. The current score reflects these strengths alongside the identified weaknesses, with the unprotected REST API routes being the primary area of concern.

Key Concerns

REST API routes without permission callbacks

Vulnerabilities

None known

EngageDock AI – Smart Support Assistant Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

EngageDock AI – Smart Support Assistant Release Timeline

v1.0.0Current

Code Analysis

Analyzed Apr 16, 2026

EngageDock AI – Smart Support Assistant Code Analysis

Dangerous Functions

Raw SQL Queries

60 prepared

Unescaped Output

672 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

86% prepared70 total queries

Output Escaping

100% escaped674 total outputs

Attack Surface

4 unprotected

EngageDock AI – Smart Support Assistant Attack Surface

Entry Points28

Unprotected4

AJAX Handlers 24

authwp_ajax_edai_submit_callbackincludes/class-edai-ajax.php:23

noprivwp_ajax_edai_submit_callbackincludes/class-edai-ajax.php:24

authwp_ajax_edai_submit_emailincludes/class-edai-ajax.php:27

noprivwp_ajax_edai_submit_emailincludes/class-edai-ajax.php:28

authwp_ajax_edai_send_chat_transcriptincludes/class-edai-ajax.php:31

noprivwp_ajax_edai_send_chat_transcriptincludes/class-edai-ajax.php:32

authwp_ajax_edai_download_vcardincludes/class-edai-ajax.php:35

noprivwp_ajax_edai_download_vcardincludes/class-edai-ajax.php:36

authwp_ajax_edai_track_interactionincludes/class-edai-ajax.php:39

noprivwp_ajax_edai_track_interactionincludes/class-edai-ajax.php:40

authwp_ajax_edai_track_visitorincludes/class-edai-visitors.php:28

noprivwp_ajax_edai_track_visitorincludes/class-edai-visitors.php:29

authwp_ajax_edai_submit_callbacktrunk/includes/class-edai-ajax.php:23

noprivwp_ajax_edai_submit_callbacktrunk/includes/class-edai-ajax.php:24

authwp_ajax_edai_submit_emailtrunk/includes/class-edai-ajax.php:27

noprivwp_ajax_edai_submit_emailtrunk/includes/class-edai-ajax.php:28

authwp_ajax_edai_send_chat_transcripttrunk/includes/class-edai-ajax.php:31

noprivwp_ajax_edai_send_chat_transcripttrunk/includes/class-edai-ajax.php:32

authwp_ajax_edai_download_vcardtrunk/includes/class-edai-ajax.php:35

noprivwp_ajax_edai_download_vcardtrunk/includes/class-edai-ajax.php:36

authwp_ajax_edai_track_interactiontrunk/includes/class-edai-ajax.php:39

noprivwp_ajax_edai_track_interactiontrunk/includes/class-edai-ajax.php:40

authwp_ajax_edai_track_visitortrunk/includes/class-edai-visitors.php:28

noprivwp_ajax_edai_track_visitortrunk/includes/class-edai-visitors.php:29

REST API Routes 4

GET/wp-json/edai-engage/v1/hoursincludes/class-edai-rest-api.php:77

GET/wp-json/edai-engage/v1/infoincludes/class-edai-rest-api.php:84

GET/wp-json/edai-engage/v1/hourstrunk/includes/class-edai-rest-api.php:77

GET/wp-json/edai-engage/v1/infotrunk/includes/class-edai-rest-api.php:84

WordPress Hooks 20

actioninitengagedock-ai-smart-support-assistant.php:281

actionadmin_menuincludes/class-edai-entries.php:168

actionadmin_initincludes/class-edai-entries.php:169

actionadmin_initincludes/class-edai-entries.php:170

actionedai_cleanup_old_entriesincludes/class-edai-entries.php:173

actionwp_enqueue_scriptsincludes/class-edai-frontend.php:23

actionwp_headincludes/class-edai-frontend.php:24

actionwp_footerincludes/class-edai-frontend.php:25

filterwpseo_metadescincludes/class-edai-frontend.php:26

actionrest_api_initincludes/class-edai-rest-api.php:65

actioninittrunk/engagedock-ai-smart-support-assistant.php:281

actionadmin_menutrunk/includes/class-edai-entries.php:168

actionadmin_inittrunk/includes/class-edai-entries.php:169

actionadmin_inittrunk/includes/class-edai-entries.php:170

actionedai_cleanup_old_entriestrunk/includes/class-edai-entries.php:173

actionwp_enqueue_scriptstrunk/includes/class-edai-frontend.php:23

actionwp_headtrunk/includes/class-edai-frontend.php:24

actionwp_footertrunk/includes/class-edai-frontend.php:25

filterwpseo_metadesctrunk/includes/class-edai-frontend.php:26

actionrest_api_inittrunk/includes/class-edai-rest-api.php:65

Scheduled Events 2

edai_cleanup_old_entries

Maintenance & Trust

EngageDock AI – Smart Support Assistant Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 15, 2026

PHP min version7.4

Downloads31

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

EngageDock AI – Smart Support Assistant Alternatives

Floating Contact Widget: Chat & Call

floating-contact-widget-chat-call

A floating chat and call widget for WordPress. Add WhatsApp chat & call buttons to your site for quick customer interaction.

0 No CVEs

Call Now Button – The #1 Click to Call Button for WordPress

call-now-button

The web's #1 click to call button for your website! A simple and powerful plugin that adds a Call Now Button to your website.

200K 5 CVEs

Contact Form by BestWebSoft – Advanced WP Contact Form Builder for WordPress

contact-form-plugin

The most powerful and user-friendly WordPress contact form plugin. Create beautiful contact forms, widgets and pages using shortcodes.

30K 10 CVEs

Business Hours Indicator

business-hours-indicator

100

Display opening hours and if you're currently open/closed, with countdown to next opening. Show or hide content only when open/closed & more!

8K 1 CVE

Really Simple Click To Call Bar

really-simple-click-to-call

A simple plugin that adds a click to call bar/call now button for mobile visitors.

8K No CVEs

Developer Profile

EngageDock AI – Smart Support Assistant Developer Profile

finderpress

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect EngageDock AI – Smart Support Assistant

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/engagedock-ai-smart-support-assistant/assets/css/engagedock-ai-styles.css/wp-content/plugins/engagedock-ai-smart-support-assistant/assets/js/engagedock-ai-scripts.js

Script Paths

/wp-content/plugins/engagedock-ai-smart-support-assistant/assets/js/engagedock-ai-scripts.js

Version Parameters

engagedock-ai-smart-support-assistant/assets/css/engagedock-ai-styles.css?ver=engagedock-ai-smart-support-assistant/assets/js/engagedock-ai-scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

engagedock-ai-chat-widgetengagedock-ai-support-button

Data Attributes

data-engagedock-ai

JS Globals

EngageDockAIConfigedai_wp_timezone_stringedai_get_legacy_constant_valueedai_is_pro_distributionedai_is_free_distribution

FAQ