Does Tellyou AI have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Tellyou AI compatible with WordPress 6.9.4?

According to WordPress.org data, Tellyou AI 1.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Tellyou AI updated?

Tellyou AI was last updated on Jan 28, 2026. Frequent updates are generally a positive security signal.

What is Tellyou AI's security score?

Tellyou AI has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Tellyou AI Security & Risk Analysis

wordpress.org/plugins/tellyou-ai

Tellyou AI embeds an AI-powered support assistant to automate inquiries, boost engagement, and provide real-time answers.

0 active installs v1.7 PHP + WP 5.0+ Updated Jan 28, 2026

aiassistantautomationchatbotcustomer-support

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Tellyou AI Safe to Use in 2026?

Generally Safe

Score 100/100

Tellyou AI has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

Based on the provided static analysis and vulnerability history, the "tellyou-ai" v1.7 plugin exhibits a generally strong security posture. The code analysis reveals no dangerous functions, all SQL queries are properly prepared, and all output is correctly escaped, indicating good development practices in these areas. Furthermore, the absence of file operations and external HTTP requests minimizes common attack vectors. The plugin also has a clean vulnerability history with no known CVEs, suggesting a commitment to security or a lack of prior exploitation. However, there are some notable concerns. The presence of two shortcodes as entry points, while not inherently insecure, represents an attack surface that warrants attention. Crucially, the complete absence of nonce checks and capability checks is a significant weakness. This means that any user, regardless of their role or permissions, could potentially trigger the functionality exposed by these shortcodes, opening the door for unauthorized actions if the shortcode handlers are not robustly secured internally. While the static analysis and historical data paint a positive picture in many respects, the lack of access control mechanisms is a substantial risk that needs to be addressed.

Key Concerns

Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Tellyou AI Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Tellyou AI Release Timeline

v1.7Current

Code Analysis

Analyzed Apr 16, 2026

Tellyou AI Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped6 total outputs

Attack Surface

Tellyou AI Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[tellyouai_embed] tellyou-ai.php:109

[tellyouai_embed] trunk/tellyou-ai.php:109

WordPress Hooks 8

actionadmin_inittellyou-ai.php:24

actionadmin_menutellyou-ai.php:36

filterscript_loader_tagtellyou-ai.php:86

actionwp_enqueue_scriptstellyou-ai.php:89

actionadmin_inittrunk/tellyou-ai.php:24

actionadmin_menutrunk/tellyou-ai.php:36

filterscript_loader_tagtrunk/tellyou-ai.php:86

actionwp_enqueue_scriptstrunk/tellyou-ai.php:89

Maintenance & Trust

Tellyou AI Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 28, 2026

PHP min version

Downloads131

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Tellyou AI Alternatives

Gapify AI Customer Communication

gapify-ai-customer-communication

100

AI-powered customer support and chat widget. Automate responses, increase sales, and provide 24/7 customer service with Gapify's intelligent chatbot.

20 No CVEs

TheChatPress.com

thechatpress

Upgrade your WordPress site with TheChatPress AI Assistant. Engage visitors, answer FAQs, and automate interactions effortlessly.

0 No CVEs

AI Chatbot Free Models – Customer Support, Live Chat, Virtual Assistant

chatbot-ai-free-models

Add an AI Chatbot to your WordPress site for instant live chat or customer support. Featuring GPT, Claude, Llama and 70+ free models.

100 1 CVE

Zeno – AI-Powered Chatbot

zeno-chatbot-ai

100

An AI-powered WordPress automation chatbot plugin that helps you automate support, engage visitors, and answer questions using OpenAI or Google Gemini

60 No CVEs

Rimoq

rimoq

100

Add an AI-powered chatbot to your website that learns from your WordPress content and provides real-time answers to visitor questions.

20 No CVEs

Developer Profile

Tellyou AI Developer Profile

tellyouai

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Tellyou AI

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Script Paths

https://app.tellyou.ai/tellyouai-plugin.js

Version Parameters

tellyouai-plugin.js?id=tellyouai-plugin.js?version=1.7tellyouai-plugin.js?platform=wordpress

HTML / DOM Fingerprints

Data Attributes

type="module"

FAQ