Does Helpie FAQ — Accordion, Docs & Knowledge Base have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Helpie FAQ — Accordion, Docs & Knowledge Base compatible with WordPress 6.9.4?

According to WordPress.org data, Helpie FAQ — Accordion, Docs & Knowledge Base 1.48 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Helpie FAQ — Accordion, Docs & Knowledge Base compatible with PHP 5.6+?

Helpie FAQ — Accordion, Docs & Knowledge Base requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Helpie FAQ — Accordion, Docs & Knowledge Base updated?

Helpie FAQ — Accordion, Docs & Knowledge Base was last updated on Mar 5, 2026. Frequent updates are generally a positive security signal.

What is Helpie FAQ — Accordion, Docs & Knowledge Base's security score?

Helpie FAQ — Accordion, Docs & Knowledge Base has a WP-Safety security score of 95/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Helpie FAQ — Accordion, Docs & Knowledge Base Security & Risk Analysis

wordpress.org/plugins/helpie-faq

Accordion , FAQ & Docs builder with Drag and Drop features. Helpie Accordion FAQ plugin works with Helpie Knowledge Base , Woocommerce & Elementor

9K active installs v1.48 PHP 5.6+ WP 5.4+ Updated Mar 5, 2026

accordiondocsfaqknowledge-basemenu

A · Safe

CVEs total4

Unpatched0

Last CVESep 22, 2025

Plugin page Download

Safety Verdict

Is Helpie FAQ — Accordion, Docs & Knowledge Base Safe to Use in 2026?

Generally Safe

Score 95/100

Helpie FAQ — Accordion, Docs & Knowledge Base has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

4 known CVEsLast CVE: Sep 22, 2025Updated 2mo ago

Risk Assessment

The 'helpie-faq' plugin version 1.48 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices with 100% of its SQL queries using prepared statements and a very high percentage (98%) of output being properly escaped. It also incorporates nonce checks in 10 instances and capability checks in 6, indicating an awareness of basic WordPress security mechanisms. However, a significant concern arises from the static analysis revealing one unprotected AJAX handler, representing a direct entry point into the application that could be exploited by an unauthenticated attacker. The plugin's vulnerability history is also a notable weakness, with a total of four known CVEs, including one high-severity and three medium-severity vulnerabilities. While there are currently no unpatched vulnerabilities, this history suggests a recurring pattern of security flaws, particularly in areas like missing authorization and cross-site scripting, which could resurface if not adequately addressed in future development. The presence of the Freemius bundled library also warrants attention, as outdated bundled libraries can introduce vulnerabilities.

Key Concerns

AJAX handler without authorization check
History of 4 known CVEs (1 high, 3 medium)
Bundled library (Freemius)

Vulnerabilities

4 published

Helpie FAQ — Accordion, Docs & Knowledge Base Security Vulnerabilities

CVEs by Year

1 CVE in 2019

2019

1 CVE in 2023

2023

1 CVE in 2024

2024

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

High

Medium

4 total CVEs

CVE-2025-58659medium · 5.3Exposure of Sensitive Information to an Unauthorized Actor

Helpie FAQ <= 1.45 - Unauthenticated Sensitive Information Exposure

Sep 22, 2025 Patched in 1.46 (116d)

CVE-2024-47647medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Accordion & FAQ – Helpie WordPress Accordion FAQ Plugin <= 1.27 - Authenticated (Editor+) Stored Cross-Site Scripting

Sep 30, 2024 Patched in 1.28 (11d)

CVE-2023-1891medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Helpie FAQ <= 1.9.8 - Reflected Cross-Site Scripting

Apr 18, 2023 Patched in 1.9.9 (280d)

WF-3fda31fa-efc9-44b9-99ba-9e3e23aa2ee0-helpie-faqhigh · 8.8Missing Authorization

Freemius SDK <= 2.2.3 - Missing Authorization to Arbitrary Options Update

Feb 25, 2019 Patched in 0.7.2 (1793d)

Version History

Helpie FAQ — Accordion, Docs & Knowledge Base Release Timeline

v1.48Current

v1.47

v1.46

v1.451 CVE

Helpie FAQ — Accordion, Docs & Knowledge Base Security & Risk Analysis

Is Helpie FAQ — Accordion, Docs & Knowledge Base Safe to Use in 2026?

Generally Safe

Key Concerns

Helpie FAQ — Accordion, Docs & Knowledge Base Security Vulnerabilities

CVEs by Year

Severity Breakdown

Helpie FAQ — Accordion, Docs & Knowledge Base Release Timeline

Helpie FAQ — Accordion, Docs & Knowledge Base Code Analysis

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

Helpie FAQ — Accordion, Docs & Knowledge Base Attack Surface

AJAX Handlers 6

Shortcodes 3

Helpie FAQ — Accordion, Docs & Knowledge Base Maintenance & Trust

Maintenance Signals

Community Trust

Helpie FAQ — Accordion, Docs & Knowledge Base Alternatives

BetterDocs – Knowledge Base Docs & FAQ Solution for Elementor & Block Editor

Iks Menu – WordPress Category Accordion Menu & FAQs

Joli FAQ SEO – WordPress FAQ Plugin

Easy Docs

Easy Accordion FAQ and Knowledge Base Software for WordPress

Helpie FAQ — Accordion, Docs & Knowledge Base Developer Profile

How We Detect Helpie FAQ — Accordion, Docs & Knowledge Base

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Helpie FAQ — Accordion, Docs & Knowledge Base