Does Helpdesk for tech and creative needs by TheIToons have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Helpdesk for tech and creative needs by TheIToons compatible with WordPress 6.7.5?

According to WordPress.org data, Helpdesk for tech and creative needs by TheIToons 2.4.1 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

What is Helpdesk for tech and creative needs by TheIToons's security score?

Helpdesk for tech and creative needs by TheIToons has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Helpdesk for tech and creative needs by TheIToons Security & Risk Analysis

wordpress.org/plugins/wp-support-by-theitoons

Instant chat support for WordPress tech, design, or marketing issues — directly in your WP dashboard.

10 active installs v2.4.1 PHP + WP 3.0.1+ Updated May 30, 2025

graphic-designerlive-helptech-supportwebmasterwordpress-help

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Helpdesk for tech and creative needs by TheIToons Safe to Use in 2026?

Generally Safe

Score 100/100

Helpdesk for tech and creative needs by TheIToons has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11mo ago

Risk Assessment

The "wp-support-by-theitoons" v2.4.1 plugin exhibits a concerning security posture due to its attack surface. While the code signals indicate good practices like the absence of dangerous functions, the use of prepared statements for all SQL queries, and proper output escaping, the significant number of unprotected AJAX handlers presents a clear risk. With 4 out of 4 AJAX entry points lacking authentication checks, an attacker could potentially exploit these handlers to perform unauthorized actions.

The taint analysis shows no identified flows with unsanitized paths, which is a positive indicator. Furthermore, the plugin has no recorded vulnerability history, suggesting a lack of publicly known security flaws. However, the presence of unprotected AJAX endpoints remains a critical weakness. The absence of nonces and capability checks on these handlers exacerbates the risk, as it allows any user, regardless of their privileges, to interact with these potentially sensitive functionalities.

In conclusion, the plugin demonstrates strengths in its handling of SQL and output, and its clean vulnerability history is commendable. Nevertheless, the unprotected AJAX handlers are a substantial security concern that needs immediate attention. This oversight creates a significant attack surface that could be leveraged by malicious actors to compromise the website's integrity.

Key Concerns

4 unprotected AJAX handlers
0 nonce checks on AJAX
0 capability checks on AJAX

Vulnerabilities

None known

Helpdesk for tech and creative needs by TheIToons Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Helpdesk for tech and creative needs by TheIToons Release Timeline

v2.4.1Current

v2.4

v2.3

v2.2.1

Code Analysis

Analyzed Apr 16, 2026

Helpdesk for tech and creative needs by TheIToons Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped3 total outputs

Attack Surface

4 unprotected

Helpdesk for tech and creative needs by TheIToons Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

authwp_ajax_store_tokentheitoonsplugin.php:254

noprivwp_ajax_store_tokentheitoonsplugin.php:255

authwp_ajax_logintheitoonsplugin.php:258

noprivwp_ajax_logintheitoonsplugin.php:259

WordPress Hooks 7

actionadmin_enqueue_scriptsreact-admin-enqueue.php:3

actionwp_enqueue_scriptsreact-admin-enqueue.php:25

actionplugins_loadedtheitoonsplugin.php:175

actionadmin_menutheitoonsplugin.php:241

actionrest_api_inittheitoonsplugin.php:335

actionplugins_loadedtheitoonsplugin.php:400

actioninittheitoonsplugin.php:407

Maintenance & Trust

Helpdesk for tech and creative needs by TheIToons Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedMay 30, 2025

PHP min version

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Helpdesk for tech and creative needs by TheIToons Alternatives

3CX Free Live Chat, Calls & Messaging

wp-live-chat-support

Chat with your website visitors in real-time for free! Engage with your customers and increase sales.

100K 15 CVEs

WP Meta SEO

wp-meta-seo

WP Meta SEO gives you the control over all your SEO optimization. Bulk SEO content and image SEO, on page content check, 404 and redirect

10K 16 CVEs

SMNTCS Google Webmaster Tools

smntcs-google-webmaster-tools

Adds the verification code of Google Search Console, former Google Webmaster Tools, to your site.

6K No CVEs

Simple Google Sitemap XML

simple-google-sitemap-xml

Simple Google Sitemap XML generates a valid Google XML sitemap.

3K No CVEs

Hatom/hentry remover (Fixes errors in Google Webmaster Tools)

no-hentry

This plugin removes the ".hentry" class with a post_class-filter and supports all themes (even the Twenty T*-family) by simply adding the ta …

1K No CVEs

Developer Profile

Helpdesk for tech and creative needs by TheIToons Developer Profile

TheIToons

3 plugins · 60 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Helpdesk for tech and creative needs by TheIToons

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-support-by-theitoons/react-admin-enqueue.js

Script Paths