Does Live Agent Call have any unpatched vulnerabilities?

No. All known vulnerabilities in Live Agent Call have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Live Agent Call compatible with WordPress 4.9.29?

According to WordPress.org data, Live Agent Call 0.1.1 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

Is Live Agent Call compatible with PHP 5.6+?

Live Agent Call requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Live Agent Call updated?

Live Agent Call was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Live Agent Call's security score?

Live Agent Call has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Live Agent Call Security & Risk Analysis

wordpress.org/plugins/live-agent-call

Live Agent Call is Sip based Calling plugin provide customer to real time call with website agent.

0 active installs v0.1.1 PHP 5.6+ WP 2.7+ Updated Unknown

agentcall-nowclick-to-callcontactlive-call

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Live Agent Call Safe to Use in 2026?

Generally Safe

Score 100/100

Live Agent Call has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The 'live-agent-call' plugin v0.1.1 presents a concerning security posture primarily due to a complete lack of output escaping. While the plugin appears to have a limited attack surface with no exposed AJAX handlers, REST API routes, shortcodes, or cron events without authentication, this is overshadowed by the critical flaw in how it handles output. All 26 identified output operations fail to properly escape data, which could lead to cross-site scripting (XSS) vulnerabilities if any data rendered by the plugin originates from user input or external sources.

Furthermore, the complete absence of nonce and capability checks, combined with a lack of any taint analysis or known vulnerability history, paints a picture of a plugin that has not undergone thorough security review or implementation of essential security best practices. While the use of prepared statements for SQL queries is a positive sign, it does not mitigate the risks posed by unescaped output. The plugin's current state suggests a high potential for exploitation via XSS, and further investigation into how data is handled and rendered is strongly recommended before deployment.

Key Concerns

All output is unescaped
No nonce checks implemented
No capability checks implemented

Vulnerabilities

None known

Live Agent Call Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Live Agent Call Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped26 total outputs

Attack Surface

Live Agent Call Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actionadmin_menuLive Agent Call.php:31

actionadmin_initLive Agent Call.php:32

actionadmin_enqueue_scriptsLive Agent Call.php:39

actionwp_enqueue_scriptsLive Agent Call.php:40

actionadmin_enqueue_scriptsLive Agent Call.php:41

actionwp_enqueue_scriptsLive Agent Call.php:76

actionadmin_enqueue_scriptsLive Agent Call.php:77

actionwp_headLive Agent Call.php:306

actionwp_footerLive Agent Call.php:367

Maintenance & Trust

Live Agent Call Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedUnknown

PHP min version5.6

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Live Agent Call Alternatives

Call-Now

call-now

Call Now is mobile calling plugin provide customer to call from website .

40 No CVEs

Call Now Button – The #1 Click to Call Button for WordPress

call-now-button

The web's #1 click to call button for your website! A simple and powerful plugin that adds a Call Now Button to your website.

200K 5 CVEs

Click to Call or Chat Buttons

click-to-call-or-chat-buttons

This plugin adds Phone Call and WhatsApp button on your webpage.

1K 1 CVE

Click To Dial – Wp Click To Call Support

click-to-dial

100

Easily add a "Call Now" bubble to your WordPress site—let visitors call you in 3 clicks with customizable buttons, forms, and time-based availability.

100 No CVEs

Simple Contact Bar

simple-contact-bar

100

Simple Contact Bar: A plugin that easily adds Call Now and WhatsApp Message buttons to your site, along with customizable options and a popup feature …

100 No CVEs

Developer Profile

Live Agent Call Developer Profile

nabeelee

3 plugins · 50 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Live Agent Call

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/live-agent-call/gui.js/wp-content/plugins/live-agent-call/init.js/wp-content/plugins/live-agent-call/sip-0.7.3.js/wp-content/plugins/live-agent-call/ua4.js/wp-content/plugins/live-agent-call/ua3.js/wp-content/plugins/live-agent-call/call.js/wp-content/plugins/live-agent-call/css.css

Script Paths

HTML / DOM Fingerprints

CSS Classes

lac_settingslac-color-fieldlac-color-field-hover

Data Attributes

data-default-color

FAQ