Group chat for WordPress – Minnit Chat Security & Risk Analysis

The Minnit Chat plugin, version 4.1.4, exhibits a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries and avoids dangerous functions, file operations, and external HTTP requests. The absence of known CVEs and a clean vulnerability history are also strong indicators of a well-maintained and secure plugin. However, there are significant concerns regarding its attack surface and output escaping.

The plugin exposes two REST API routes without any permission callbacks, creating a direct entry point for unauthenticated access. Furthermore, the static analysis revealed two taint flows with unsanitized paths, which, although not classified as critical or high severity, represent potential vulnerabilities if exploited. The extremely low percentage of properly escaped output (17%) is a major red flag, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities where user-supplied data could be injected into the page without proper sanitization.

In conclusion, while the plugin has a clean vulnerability history and implements good database practices, the lack of authentication on REST API routes and the pervasive issue with output escaping present substantial security risks. These areas require immediate attention to harden the plugin's security.