[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ft6cRHspXMqxImt2L8K7v3qaoyczxZE-y6j-1iYCfnmk":3},{"slug":4,"name":4,"version":5,"author":6,"author_profile":7,"description":8,"short_description":9,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":12,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":21,"download_link":22,"security_score":23,"vuln_count":12,"unpatched_count":12,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":34,"analysis":108,"fingerprints":284},"mi13-chat","0.1.2.7","mi13","https:\u002F\u002Fprofiles.wordpress.org\u002Fmi13\u002F","\u003Cp>Чат может быть выведен через виджет или в шаблоне страницы.\u003Cbr \u002F>\nСообщения перед публикацией очищаются от ссылок и проходят через пользовательский фильтр, который можно изменить в настройках.\u003Cbr \u002F>\nСообщение может оставить любой посетитель Вашего сайта. Если вы хотите сделать приватный чат – создайте шаблон страницы с входом по паролю.\u003Cbr \u002F>\nДля защиты используется ограничение кол-ва символов, проверка на дубликаты и ограничение сообщений пользователя оставленных подряд (ip фильтр).\u003Cbr \u002F>\nДля отправки сообщения администратора, быстрого удаления; очистки чата используйте внутренний пароль чата и служебные команды в message.\u003Cbr \u002F>\nСообщения администратора не проходят через фильтр имен и выделяются цветом.\u003Cbr \u002F>\nВ конце каждого сообщения может быть выведена реферальная ссылка на пост, со страницы которого пользователь написал в чат и кнопка для запроса на удаление (по желанию).\u003Cbr \u002F>\nДля каждого отдельного сообщения можно запретить отправку запроса на удаление, если сама кнопка не скрыта в настройках.\u003Cbr \u002F>\nМинимальный тайм-аут чата 5 секунд, чтобы небыло большой нагрузки на сервер. При каждом следующем вхождений в чат тайм-аут увеличивается на 0.1 сек.\u003C\u002Fp>\n\u003Cp>=Например…=\u003C\u002Fp>\n\u003Cp>\u003Cem>name filter – admin;\u003Cbr \u002F>\nworlds filter – bad world;\u003Cbr \u002F>\npassword – my_pass;\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cem>admin my_pass&Hello!\u003C\u002Fem> – проидет как admin Hello!\u003Cbr \u002F>\n\u003Cem>admin Hello!\u003C\u002Fem> – не пройдет.\u003Cbr \u002F>\n\u003Cem>name bad world12345\u003C\u002Fem> – пройдет как name *12345.\u003C\u002Fp>\n","Открытый чат для Вашего сайта.",10,1061,0,"2020-03-19T18:36:00.000Z","5.3.21","5.3.2","",[18,19,20],"ajax-chat","open-chat","private-chat","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmi13-chat\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmi13-chat.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":6,"display_name":6,"profile_url":7,"plugin_count":28,"total_installs":29,"avg_security_score":30,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},7,20,98,30,93,"2026-04-04T06:38:36.908Z",[35,54,73,91],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":10,"downloaded":43,"rating":12,"num_ratings":12,"last_updated":44,"tested_up_to":45,"requires_at_least":46,"requires_php":16,"tags":47,"homepage":52,"download_link":53,"security_score":23,"vuln_count":12,"unpatched_count":12,"last_vuln_date":24,"fetched_at":25},"jheck-chat","Jheck Chat","1.4","Jeric","https:\u002F\u002Fprofiles.wordpress.org\u002Fjeric_izon\u002F","\u003Cp>Simple worpdress chat plugin using ajax. Can help wordpress site to promote social activity. It can be use as a live chat forum, it also includes filtering keywords to moderate users.\u003C\u002Fp>\n\u003Ch4>Demo URL:\u003C\u002Fh4>\n\u003Col>\n\u003Cli>http:\u002F\u002Fjheck-chat.esy.es\u002F\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Like us on facebook:\u003C\u002Fh4>\n\u003Col>\n\u003Cli>https:\u002F\u002Fwww.facebook.com\u002FJheckChat\u002F\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>New updates! Version: 1.4\u003C\u002Fh4>\n\u003Cp>=\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Database upgraded\u003C\u002Fli>\n\u003Cli>File data encryption.\u003C\u002Fli>\n\u003Cli>Select if logged in user only can use chat.\u003C\u002Fli>\n\u003Cli>Registration link available.\u003C\u002Fli>\n\u003Cli>Chatbox title editable.\u003C\u002Fli>\n\u003Cli>More specific blocked message error response.\u003C\u002Fli>\n\u003Cli>Minimum and maximum characters user can send.\u003C\u002Fli>\n\u003Cli>Revised press enter to submit.\u003C\u002Fli>\n\u003Cli>Chatbox wrapper height overlap fixed.\u003C\u002Fli>\n\u003Cli>Chatbox hide if disabled.\u003C\u002Fli>\n\u003Cli>User role issue fixed.\u003C\u002Fli>\n\u003Cli>Template revised.\u003C\u002Fli>\n\u003C\u002Ful>\n","Simple worpdress chat plugin using ajax.",6839,"2016-03-11T10:20:00.000Z","4.4.34","3.3",[18,48,49,50,51],"chat","chatting","free-chat","live-chat","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjheck-chat","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjheck-chat.1.4.zip",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":10,"downloaded":62,"rating":63,"num_ratings":29,"last_updated":64,"tested_up_to":45,"requires_at_least":65,"requires_php":16,"tags":66,"homepage":71,"download_link":72,"security_score":23,"vuln_count":12,"unpatched_count":12,"last_vuln_date":24,"fetched_at":25},"wp-ajax-user-chat","Wp Ajax User Chat","1.2","Ronak Dave","https:\u002F\u002Fprofiles.wordpress.org\u002Fronakdave\u002F","\u003Cp>Solved many bugs and added new features check out the change log for more details!\u003C\u002Fp>\n\u003Cp>First ever simplest user to user wordpress chat plugin based on ajax. Registered users can chat with each other from front-end. Just get users registered to your website make them login and after login they can chat with each other. This chat plugin will create a private chat session between two users. I have tested this plugin on all the latest major browsers and it is working fine.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why use wp ajax user chat plugin?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Do you have users registered with your website and do you want them to chat internally then this plugin will work like a charm for you.\u003C\u002Fp>\n\u003Cp>Have you ever thought of a plugin that will provide you a platform for your users to chat internally and provide them a great user experience? then this plugin is just what you need.\u003C\u002Fp>\n\u003Cp>\u003Cem>Consider a donation if this plugin helped you!\u003C\u002Fem> \u003Ca href=\"http:\u002F\u002Fronakdave.in\u002Fdonate\" title=\"Donate if this plugin helped you\" rel=\"nofollow ugc\">Donate\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How to you use this plugin?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>No settings required to run this plugin :)\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The only thing you need is registered users who can chat with each other. Just get people registered with your website and this plugin does the rest. Users need to login to the site and then only they can chat with each other.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>There is lot more to come\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>I am working on making this plugin better and will keep it updated and will improve further. Currently this plugin is tested with the latest version of wordpress and it is working perfectly.\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>The chat which will be done between the users will not be available the next time. This means that once the chat box will be closed the chat session finishes. New chat session wont have the previous chat messages available next time.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Share this plugin if you liked it\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fsharer\u002Fsharer.php?u=https%3A\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-ajax-user-chat\u002F\" title=\"Share on FB\" rel=\"nofollow ugc\">Share on facebook\u003C\u002Fa>.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fhome?status=https%3A\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-ajax-user-chat\u002F\" title=\"Share on twitter\" rel=\"nofollow ugc\">Share on twitter\u003C\u002Fa>.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fplus.google.com\u002Fshare?url=https%3A\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-ajax-user-chat\u002F\" title=\"share on google+\" rel=\"nofollow ugc\">Share on google+\u003C\u002Fa>.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.linkedin.com\u002FshareArticle?mini=true&url=https%3A\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-ajax-user-chat\u002F&title=Wordpress%20User%20Chat%20Plugin&summary=This%20is%20a%20user%20to%20user%20chat%20plugin%20for%20WordPress.&source=\" title=\"Share on linkedin\" rel=\"nofollow ugc\">Share on linkedin\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Also don’t forget to rate the plugin if you like it\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Thanks 🙂\u003C\u002Fp>\n","First ever simplest user to user wordpress chat plugin based on ajax. Registered users can chat with each other from front-end.",11459,90,"2017-10-03T18:27:00.000Z","3.5.2",[48,67,68,69,70],"chat-plugin","user-to-user-chat","wp-ajax-chat","wp-chat","http:\u002F\u002Fwww.ronakdave.in\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-ajax-user-chat.1.2.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":12,"downloaded":81,"rating":12,"num_ratings":12,"last_updated":82,"tested_up_to":83,"requires_at_least":84,"requires_php":85,"tags":86,"homepage":89,"download_link":90,"security_score":23,"vuln_count":12,"unpatched_count":12,"last_vuln_date":24,"fetched_at":25},"mchat","MChat User Chat","1.0.1","msolution","https:\u002F\u002Fprofiles.wordpress.org\u002Fmsolution\u002F","\u003Cp>MChat Plugin allowing WordPress user a one to one chat between logged in Users! Role based access, Pure Ajax working, Adds No HTML to the theme.\u003C\u002Fp>\n\u003Ch4>List of features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>No hidden costs, its Free!\u003C\u002Fli>\n\u003Cli>MChat Plugin provides a shortcode which can be placed on any post or pages or author pages, which enables a logged in user to have a direct chat with the profile owner.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy installation\u003C\u002Fstrong>: MChat can be installed using a single shortcode [MCHAT user_id=X], where X is the user_id of the person a logged in user want to chat with. It can also be added to theme files using the do_shortcode function. Check Plugins settings page for more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multiple chat\u003C\u002Fstrong> installations can be embedded on the same page. Shortcode can be added to individual author pages.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fully Ajax\u003C\u002Fstrong>: MChat Plugin adds No HTML to the page, and there for does not slow down the page load in any way. MChat loads completely via Ajax.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Appearance\u003C\u002Fstrong> MChat provides easy customization for colors. Just set the colors in the admin section, and see your MChat blend with the theme.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role Base Access\u003C\u002Fstrong> MChat Provides Role based access. Only registered users with the given roles can use the chat system.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New Message Alert\u003C\u002Fstrong> Users hear a sound when they get a new chat message. \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Email alerts\u003C\u002Fstrong> Users get email alerts when they receive a chat message.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multiline messages\u003C\u002Fstrong>: Let your users post long messages in multiple lines.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Block Users\u003C\u002Fstrong> Users have an option to block another user.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>All settings are available on \u003Ccode>Settings -> MChat Settings\u003C\u002Fcode> page.\u003C\u002Fp>\n\u003Cp>The plugin is i18n ready.\u003C\u002Fp>\n","MChat Plugin allowing WordPress user a one to one chat between logged in Users! Role based access, Pure Ajax working, Adds No HTML to the theme.",984,"2022-02-07T18:44:00.000Z","5.9.13","5.0","7.4.2",[18,87,48,67,88],"ajax-chat-plugn","pure-ajax-chat","http:\u002F\u002Fwww.M-Solutions.co.in","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmchat.zip",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":12,"downloaded":99,"rating":12,"num_ratings":12,"last_updated":100,"tested_up_to":101,"requires_at_least":102,"requires_php":16,"tags":103,"homepage":106,"download_link":107,"security_score":23,"vuln_count":12,"unpatched_count":12,"last_vuln_date":24,"fetched_at":25},"pgreca-chat","PGreca Chat","0.8","pgreca","https:\u002F\u002Fprofiles.wordpress.org\u002Fpgreca\u002F","\u003Cp>Live Chat Plugin for WordPress Websites. 100% FREE.\u003Cbr \u002F>\nThis plugin is designed to be “plug and play”.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy installation\u003C\u002Fli>\n\u003Cli>No external server required. There is no need to set up, maintain or pay for a server. Regular hosting is sufficent.\u003C\u002Fli>\n\u003Cli>Chat private. Make individual chat.\u003C\u002Fli>\n\u003Cli>Single sign-on. No separate login to the chat is required. If an user is logged in to your website, then the chat automatically log her\u002Fhim in.\u003C\u002Fli>\n\u003Cli>Youtube videos. Display a videoplayer of youtube.\u003C\u002Fli>\n\u003Cli>Localization. Provide a translation for your language. All text are trnslatable. (English \u002F Italian)\u003C\u002Fli>\n\u003Cli>Appearance adjustaments. Adjust visual appearance to match your website by editing colors, background, ecc…\u003C\u002Fli>\n\u003Cli>Chat modeation. Protect your chat.\u003C\u002Fli>\n\u003Cli>Integration with BuddyPress.\u003C\u002Fli>\n\u003C\u002Ful>\n","Live Chat Plugin for Wordpress Websites. 100% FREE.",1954,"2017-06-12T23:55:00.000Z","4.8.28","4.5",[48,67,20,104,105],"shoutbox","wordpress-live-chat","http:\u002F\u002Fyoome.altervista.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpgreca-chat.zip",{"attackSurface":109,"codeSignals":160,"taintFlows":250,"riskAssessment":276,"analyzedAt":283},{"hooks":110,"ajaxHandlers":147,"restRoutes":156,"shortcodes":157,"cronEvents":158,"entryPointCount":159,"unprotectedCount":12},[111,117,122,127,131,135,140,143],{"type":112,"name":113,"callback":114,"file":115,"line":116},"action","admin_menu","createMenu","mi13-chat-admin.php",17,{"type":118,"name":119,"callback":120,"priority":10,"file":115,"line":121},"filter","set-screen-option","setScreenOption",18,{"type":112,"name":123,"callback":124,"file":125,"line":126},"wp_footer","mi13_chat_script","mi13-chat-widget.php",72,{"type":112,"name":128,"callback":129,"file":125,"line":130},"widgets_init","register_mi13_chat_widget",256,{"type":112,"name":132,"callback":133,"file":125,"line":134},"wp_enqueue_scripts","add_mi13_chat_widget_scripts",266,{"type":112,"name":136,"callback":137,"file":138,"line":139},"plugins_loaded","mi13_chat_load_languages","mi13-chat.php",36,{"type":112,"name":113,"callback":141,"file":138,"line":142},"mi13_chat_menu",71,{"type":112,"name":144,"callback":145,"file":138,"line":146},"admin_init","mi13_chat_init",103,[148,154],{"action":149,"nopriv":150,"callback":151,"hasNonce":152,"hasCapCheck":150,"file":138,"line":153},"mi13_chat",false,"mi13_chat_ajax",true,362,{"action":149,"nopriv":152,"callback":151,"hasNonce":152,"hasCapCheck":150,"file":138,"line":155},363,[],[],[],2,{"dangerousFunctions":161,"sqlUsage":162,"outputEscaping":164,"fileOperations":12,"externalRequests":12,"nonceChecks":248,"capabilityChecks":248,"bundledLibraries":249},[],{"prepared":12,"raw":12,"locations":163},[],{"escaped":121,"rawEcho":165,"locations":166},43,[167,170,172,174,175,176,178,180,182,184,186,188,190,192,194,196,198,200,201,203,204,206,208,210,212,214,216,218,220,222,224,225,227,229,231,233,235,237,239,241,243,245,246],{"file":115,"line":168,"context":169},70,"raw output",{"file":115,"line":171,"context":169},79,{"file":115,"line":173,"context":169},87,{"file":115,"line":63,"context":169},{"file":115,"line":32,"context":169},{"file":115,"line":177,"context":169},96,{"file":115,"line":179,"context":169},217,{"file":115,"line":181,"context":169},223,{"file":125,"line":183,"context":169},14,{"file":125,"line":185,"context":169},15,{"file":125,"line":187,"context":169},16,{"file":125,"line":189,"context":169},56,{"file":125,"line":191,"context":169},57,{"file":125,"line":193,"context":169},59,{"file":125,"line":195,"context":169},61,{"file":125,"line":197,"context":169},62,{"file":125,"line":199,"context":169},63,{"file":125,"line":199,"context":169},{"file":125,"line":202,"context":169},64,{"file":125,"line":168,"context":169},{"file":125,"line":205,"context":169},119,{"file":125,"line":207,"context":169},123,{"file":125,"line":209,"context":169},135,{"file":125,"line":211,"context":169},143,{"file":125,"line":213,"context":169},185,{"file":125,"line":215,"context":169},226,{"file":125,"line":217,"context":169},237,{"file":125,"line":219,"context":169},239,{"file":125,"line":221,"context":169},248,{"file":138,"line":223,"context":169},109,{"file":138,"line":205,"context":169},{"file":138,"line":226,"context":169},124,{"file":138,"line":228,"context":169},129,{"file":138,"line":230,"context":169},134,{"file":138,"line":232,"context":169},138,{"file":138,"line":234,"context":169},139,{"file":138,"line":236,"context":169},156,{"file":138,"line":238,"context":169},170,{"file":138,"line":240,"context":169},175,{"file":138,"line":242,"context":169},176,{"file":138,"line":244,"context":169},180,{"file":138,"line":213,"context":169},{"file":138,"line":247,"context":169},186,1,[],[251,267],{"entryPoint":252,"graph":253,"unsanitizedCount":248,"severity":266},"mi13_chat_script (mi13-chat-widget.php:75)",{"nodes":254,"edges":264},[255,259],{"id":256,"type":257,"label":258,"file":125,"line":171},"n0","source","$_COOKIE",{"id":260,"type":261,"label":262,"file":125,"line":217,"wp_function":263},"n1","sink","echo() [XSS]","echo",[265],{"from":256,"to":260,"sanitized":150},"medium",{"entryPoint":268,"graph":269,"unsanitizedCount":248,"severity":275},"\u003Cmi13-chat-widget> (mi13-chat-widget.php:0)",{"nodes":270,"edges":273},[271,272],{"id":256,"type":257,"label":258,"file":125,"line":171},{"id":260,"type":261,"label":262,"file":125,"line":217,"wp_function":263},[274],{"from":256,"to":260,"sanitized":150},"low",{"summary":277,"deductions":278},"The \"mi13-chat\" plugin version 0.1.2.7 exhibits a generally positive security posture, primarily due to the absence of known vulnerabilities, absence of dangerous functions, and the use of prepared statements for all SQL queries. The plugin also incorporates basic security measures like nonce and capability checks for its AJAX handlers. However, there are notable areas of concern within the static analysis results.  A significant portion of the plugin's output is not properly escaped (only 30%), creating a risk of Cross-Site Scripting (XSS) vulnerabilities, especially if user-supplied data is directly outputted. Additionally, the taint analysis reveals two flows with unsanitized paths, which, although not currently categorized as critical or high severity, represent potential injection vectors that require careful review and sanitization.  The lack of any recorded historical vulnerabilities is a strength, suggesting a potentially stable codebase, but the identified code signals and taint analysis issues indicate that ongoing vigilance and code improvements are necessary.  In conclusion, while the plugin benefits from a clean vulnerability history and good SQL handling, the insufficient output escaping and unsanitized taint flows present tangible risks that should be addressed.",[279,281],{"reason":280,"points":185},"Insufficient output escaping",{"reason":282,"points":10},"Unsanitized paths in taint flows","2026-03-17T00:44:53.638Z",{"wat":285,"direct":294},{"assetPaths":286,"generatorPatterns":289,"scriptPaths":290,"versionParams":291},[287,288],"\u002Fwp-content\u002Fplugins\u002Fmi13-chat\u002Fjs\u002Fmi13-chat.js","\u002Fwp-content\u002Fplugins\u002Fmi13-chat\u002Fcss\u002Fstyle.css",[],[287],[292,293],"mi13-chat\u002Fjs\u002Fmi13-chat.js?ver=","mi13-chat\u002Fcss\u002Fstyle.css?ver=",{"cssClasses":295,"htmlComments":296,"htmlAttributes":297,"restEndpoints":312,"jsGlobals":313,"shortcodeOutput":314},[],[],[298,299,300,301,302,303,304,305,306,307,308,309,310,311],"name=\"mi13_chat[length]\"","name=\"mi13_chat[all_messages_limit]\"","name=\"mi13_chat[user_messages_limit]\"","name=\"mi13_chat[update_time_out]\"","name=\"mi13_chat[last_id]\"","name=\"mi13_chat[count]\"","name=\"mi13_chat[sound]\"","name=\"mi13_chat[fix]\"","name=\"mi13_chat[theme]\"","name=\"mi13_chat[ref]\"","name=\"mi13_chat[name_filter]\"","name=\"mi13_chat[pattern]\"","name=\"mi13_chat[filter_list]\"","name=\"mi13_chat[password]\"",[],[],[]]