Does Interakt have any unpatched vulnerabilities?

No. All known vulnerabilities in Interakt have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Interakt compatible with WordPress 4.7.33?

According to WordPress.org data, Interakt 2.8.0 has been tested up to WordPress 4.7.33. Check the plugin's changelog for the latest compatibility information.

How often is Interakt updated?

Interakt was last updated on Mar 31, 2017. Frequent updates are generally a positive security signal.

What is Interakt's security score?

Interakt has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Interakt Security & Risk Analysis

wordpress.org/plugins/wp-interakt-integration

We make Customer Engagement easy. Engage and convert all your online site visitors via Email, notifications, Live-chat, helpdesk and more.

10 active installs v2.8.0 PHP + WP 3.8+ Updated Mar 31, 2017

crmfeedback-forminteraktinterakt-colead-capture

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Interakt Safe to Use in 2026?

Generally Safe

Score 85/100

Interakt has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The wp-interakt-integration plugin v2.8.0 demonstrates a generally good security posture with several positive indicators. The absence of known CVEs and its vulnerability history suggest a mature and potentially well-maintained codebase. The plugin also utilizes prepared statements for all its SQL queries and implements nonce checks and capability checks, which are crucial for secure WordPress development. The limited attack surface, consisting of a single shortcode and no unprotected entry points, is also a positive sign.

However, there are areas for concern. The static analysis reveals that only 48% of output is properly escaped, indicating a significant risk of Cross-Site Scripting (XSS) vulnerabilities. Additionally, the taint analysis shows two flows with unsanitized paths, which, while not classified as critical or high severity in this report, warrant attention as they represent potential avenues for malicious input injection. The plugin also makes 10 external HTTP requests, which could be a vector for supply chain attacks if not handled securely.

In conclusion, while the plugin has strengths in its SQL handling and authentication mechanisms, the high percentage of unescaped output and the presence of unsanitized paths are notable weaknesses. Future development should prioritize addressing these issues to further harden the plugin's security.

Key Concerns

Low percentage of properly escaped output
Taint flows with unsanitized paths present
External HTTP requests made

Vulnerabilities

None known

Interakt Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Interakt Release Timeline

v2.8.0Current

v2.7.0

v2.6.2

v2.6.1

v2.6

Code Analysis

Analyzed Mar 16, 2026

Interakt Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

77 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared2 total queries

Output Escaping

48% escaped162 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths

interakt_create_contactform (class\class_create_dynamic_fields.php:20)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Interakt Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[interakt_contact_form] interakt_for_wordpress.php:139

WordPress Hooks 21

actionadmin_initclass\class_interakt_menu_metabox.php:54

actionwp_enqueue_scriptsclass\class_interakt_subscribe_widget.php:5

actionwidgets_initclass\class_interakt_subscribe_widget.php:315

actionadmin_menuclass\class_ps_Interakt.php:18

actionadmin_initclass\class_ps_Interakt.php:19

actionadmin_enqueue_scriptsclass\class_ps_Interakt.php:20

actionadmin_initclass\class_ps_Interakt.php:21

filterscreen_options_show_screenclass\nav-menuscopy.php:384

filteradmin_body_classclass\nav-menuscopy.php:511

filterwidget_textinterakt_for_wordpress.php:22

actionadmin_enqueue_scriptsinterakt_for_wordpress.php:35

actionwidgets_initinterakt_for_wordpress.php:39

actionwp_footerinterakt_for_wordpress.php:49

actionadmin_enqueue_scriptsinterakt_for_wordpress.php:90

actionadmin_bar_menuinterakt_for_wordpress.php:106

actionwp_before_admin_bar_renderinterakt_for_wordpress.php:128

actionadd_meta_boxesinterakt_for_wordpress.php:163

actioninitinterakt_for_wordpress.php:330

actionwoocommerce_thankyouinterakt_for_wordpress.php:517

actionloop_startinterakt_for_wordpress.php:533

actionwoocommerce_add_to_cartinterakt_for_wordpress.php:534

Maintenance & Trust

Interakt Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.33

Last updatedMar 31, 2017

PHP min version

Downloads4K

Community Trust

Rating100/100

Number of ratings4

Active installs10

Alternatives

Interakt Alternatives

Zoho CRM Lead Magnet

zoho-crm-forms

Websites are one of the most important sources of leads for your business.

3K 1 unpatched

Vtiger CRM Integration for WordPress

wp-tiger

Elevate Lead Capture and CRM Integration Effortlessly with Vtiger CRM Integration for WordPress

300 No CVEs

Zoho Integration for WordPress

wp-zoho-crm

Elevate Your Leads: Automate with Smackcoders' Zoho WordPress Integration. An easy, automated and advanced Zoho Wordpress web form generator to c …

200 No CVEs

Followize Extension – Contact Form 7

followize-extension-cf7

Receba os leads gerados através do seu site diretamente no Followize.

100 No CVEs

Wise Agent Lead Forms

wiseagentleadform

100

Short Description: The Wise Agent WordPress plugin lets you easily add capture forms to any page on your WordPress site.

100 1 CVE

Developer Profile

Interakt Developer Profile

peeyush_singla

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Interakt

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-interakt-integration/css/interakt_tab_style.css/wp-content/plugins/wp-interakt-integration/js/interakt_tab_script.js/wp-content/plugins/wp-interakt-integration/js/cf_dynamic_fields.js/wp-content/plugins/wp-interakt-integration/js/chat_feedback_control.js/wp-content/plugins/wp-interakt-integration/js/verify_email_field.js/wp-content/plugins/wp-interakt-integration/js/interakt_backend_scripts.js/wp-content/plugins/wp-interakt-integration/js/syncing_order_data.js/wp-content/plugins/wp-interakt-integration/js/interakt_subscribe_widget_custom.js+2 more

Script Paths

/wp-content/plugins/wp-interakt-integration/js/interakt_tab_script.js/wp-content/plugins/wp-interakt-integration/js/cf_dynamic_fields.js/wp-content/plugins/wp-interakt-integration/js/chat_feedback_control.js/wp-content/plugins/wp-interakt-integration/js/verify_email_field.js/wp-content/plugins/wp-interakt-integration/js/interakt_backend_scripts.js/wp-content/plugins/wp-interakt-integration/js/syncing_order_data.js+1 more

HTML / DOM Fingerprints

CSS Classes

interakt-tabinterakt-tab-activeinterakt_tab_styleinterakt_tab_scriptinterakt_backend_style

Data Attributes

data-interakt-app-id

JS Globals

window.mySettings

Shortcode Output

[interakt_contact_form]

FAQ