Does Smartchat have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Smartchat compatible with WordPress 6.2.9?

According to WordPress.org data, Smartchat 2.2.6 has been tested up to WordPress 6.2.9. Check the plugin's changelog for the latest compatibility information.

Is Smartchat compatible with PHP 5.6+?

Smartchat requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Smartchat updated?

Smartchat was last updated on May 2, 2023. Frequent updates are generally a positive security signal.

What is Smartchat's security score?

Smartchat has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Smartchat Security & Risk Analysis

wordpress.org/plugins/smartchat

Personalize the user experience on your site with the ChatGPT-powered virtual assistant of Smartchat. Add important information about your business an …

10 active installs v2.2.6 PHP 5.6+ WP 4.7+ Updated May 2, 2023

artificial-intelligencechatgptinteractive-experiencetechnologyvirtual-assistant

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Smartchat Safe to Use in 2026?

Generally Safe

Score 85/100

Smartchat has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The smartchat plugin v2.2.6 presents a mixed security posture. While the absence of known CVEs and a low percentage of unsanitized taint flows are positive indicators, significant concerns arise from its static analysis results. The plugin exposes two AJAX handlers, both of which lack authentication checks, creating a substantial attack surface for unauthorized actions. Furthermore, all SQL queries are executed without prepared statements, increasing the risk of SQL injection vulnerabilities. The lack of nonce checks and capability checks on its entry points further exacerbates these risks, making it easier for attackers to exploit potential weaknesses. While the plugin boasts a high percentage of properly escaped output and no dangerous function usage, these strengths are overshadowed by the critical security gaps in authentication and data sanitization for database operations.

Key Concerns

AJAX handlers without authentication checks
SQL queries without prepared statements
Lack of nonce checks on entry points
Lack of capability checks on entry points
Flow with unsanitized path detected

Vulnerabilities

None known

Smartchat Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Smartchat Release Timeline

v2.2.6Current

v2.2.5

v2.2.4

v2.2.2

v2.2.1

v2.2.0

Code Analysis

Analyzed Mar 17, 2026

Smartchat Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

106 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared42 total queries

Output Escaping

93% escaped114 total outputs

Data Flows · Security

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

<pro_check> (pro_check.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Smartchat Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_update_visiblesmartchat.php:73

noprivwp_ajax_update_visiblesmartchat.php:74

WordPress Hooks 3

actionwp_enqueue_scriptssmartchat.php:38

actionadmin_menusmartchat.php:62

actionwp_footersmartchat.php:100

Maintenance & Trust

Smartchat Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9

Last updatedMay 2, 2023

PHP min version5.6

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Smartchat Alternatives

LLMs.txt Generator

llms-txt-generator

Optimize your WordPress content for AI discovery and interaction through the llms.txt file, the robots.txt for AI engines.

1K No CVEs

ContentBot AI Writer (ChatGPT, GPT4)

content-bot

Get ideas, inspiration, and content in a few clicks with our AI Writer. All content is unique and original. Simply tweak it and go.

500 1 unpatched

Advanced LLMs.txt Generator

advanced-llms-txt-generator

Optimize your WordPress content for AI discovery and interaction with the LLMS.txt file, the AI equivalent of robots.txt.

100 No CVEs

AI24 Assistant Integrator

ai24-assistant-integrator

Easily integrate OpenAI assistants into your WordPress site for enhanced user interaction and support.

70 No CVEs

ChatPress.ai – The Simplest AI Chatbot for Your Website

chatpress-ai

100

ChatPress is the simplest way to add AI to your site: One plugin. One API key. Live in under 10 minutes.

40 No CVEs

Developer Profile

Smartchat Developer Profile

agendavirtual

2 plugins · 20 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Smartchat

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/smartchat/admin/css/admin-av.css/wp-content/plugins/smartchat/admin/js/av_admin.js/wp-content/plugins/smartchat/public/css/smartchat.css/wp-content/plugins/smartchat/public/js/bootstrap.bundle.min.js/wp-content/plugins/smartchat/public/js/smartchat-script.js

Script Paths

/wp-content/plugins/smartchat/public/js/bootstrap.bundle.min.js/wp-content/plugins/smartchat/public/js/smartchat-script.js/wp-content/plugins/smartchat/admin/css/admin-av.css/wp-content/plugins/smartchat/admin/js/av_admin.js

Version Parameters

smartchat-script?ver=2.1.1smartchat-style?ver=1.6.5smartchat-style?ver=1.8

HTML / DOM Fingerprints

CSS Classes

botao-smartchatvirtual-assistant-box

JS Globals

smartChatDatasmartChatVisiblesmartChatDataPositionsmartChatDataIconsmartChatDataCor

FAQ