Does SiteLeads have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is SiteLeads compatible with WordPress 7.0?

According to WordPress.org data, SiteLeads 1.1.5 has been tested up to WordPress 7.0. Check the plugin's changelog for the latest compatibility information.

Is SiteLeads compatible with PHP 7.4+?

SiteLeads requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is SiteLeads updated?

SiteLeads was last updated on Apr 6, 2026. Frequent updates are generally a positive security signal.

What is SiteLeads's security score?

SiteLeads has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SiteLeads Security & Risk Analysis

wordpress.org/plugins/siteleads

Capture more leads automatically with a multi-channel contact widget and a free AI assistant that works 24/7.

1K active installs v1.1.5 PHP 7.4+ WP 6.8+ Updated Apr 6, 2026

ai-chatbotcall-buttonchat-buttonfacebook-messengerwhatsapp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is SiteLeads Safe to Use in 2026?

Generally Safe

Score 100/100

SiteLeads has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The 'siteleads' v1.0.0 plugin exhibits a strong security posture based on the provided static analysis. The absence of any identified dangerous functions, raw SQL queries, or unescaped output is a significant positive. Furthermore, the plugin demonstrates robust input validation and authorization practices by having zero unprotected AJAX handlers, REST API routes, shortcodes, or cron events, and a complete absence of any identified taint flows. The vulnerability history is also completely clean, with no known CVEs ever recorded for this plugin. This suggests a development team that is either highly security-conscious or has not yet encountered exploitable vulnerabilities. The only minor point of consideration is the bundling of Lodash, which, while common, should always be kept up-to-date to mitigate potential known vulnerabilities within the library itself, though no specific issues are indicated here.

Key Concerns

Bundled library Lodash

Vulnerabilities

None known

SiteLeads Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

SiteLeads Release Timeline

v1.1.5Current

v1.1.4

v1.1.3

v1.1.2

v1.1.0

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

SiteLeads Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Lodash

Attack Surface

SiteLeads Attack Surface

Entry Points0

Unprotected0

Maintenance & Trust

SiteLeads Maintenance & Trust

Maintenance Signals

WordPress version tested7.0

Last updatedApr 6, 2026

PHP min version7.4

Downloads6K

Community Trust

Rating0/100

Number of ratings0

Active installs1K

Alternatives

SiteLeads Alternatives

Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button – Chaty

chaty

WhatsApp chat, Facebook Messenger, Telegram, TikTok, Instagram, Email, Line, WeChat Phone call, SMS, 20+ live chat icons & WhatsApp chat pop up 💬

400K 11 CVEs

Sticky Chat Widget – Floating Chat Icons, Contact Form, Call, Click to Chat, Email & Message Buttons

sticky-chat-widget

100

Social chat buttons with WhatsApp, Messenger, WeChat, Telegram, Instagram, TikTok, Zalo & more — plus SMS, Call button, Contact form, and 20+ icons.

10K 1 CVE

Easy WP Chat Integration

easy-wp-chat-integration

Custom Phone Call and WhatsApp Chat Button for website.

0 No CVEs

Quick Chat Buttons: Chat with your website visitors via popular messaging apps

quick-chat-buttons

Using Quick Chat Buttons, Your website visitors can contact with you via popular apps like SMS, Phone and many other channels

0 No CVEs

Joinchat

creame-whatsapp-me

100

WhatsApp, Messenger, Telegram, Phone call… capture users through their favorite Apps and turn into clients

700K No CVEs

Developer Profile

SiteLeads Developer Profile

Extend Themes

60 plugins · 430K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

127 days

View full developer profile

Detection Fingerprints

How We Detect SiteLeads

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/siteleads/assets/css/admin.css/wp-content/plugins/siteleads/assets/css/frontend.css/wp-content/plugins/siteleads/assets/js/admin.js/wp-content/plugins/siteleads/assets/js/frontend.js

Script Paths

/wp-content/plugins/siteleads/assets/js/admin.js/wp-content/plugins/siteleads/assets/js/frontend.js

Version Parameters

siteleads/assets/css/admin.css?ver=siteleads/assets/css/frontend.css?ver=siteleads/assets/js/admin.js?ver=siteleads/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

siteleads-admin-pagesiteleads-form-buildersiteleads-form-wrapper

HTML Comments

Data Attributes

data-siteleads-form-iddata-siteleads-nonce

JS Globals

siteleads_ajax_object

REST Endpoints

/wp-json/siteleads/v1/forms/wp-json/siteleads/v1/submissions

Shortcode Output

[siteleads_form id="

FAQ