Does Zeno – AI-Powered Chatbot have any unpatched vulnerabilities?

No. All known vulnerabilities in Zeno – AI-Powered Chatbot have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Zeno – AI-Powered Chatbot compatible with WordPress 6.9.4?

According to WordPress.org data, Zeno – AI-Powered Chatbot 1.3.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Zeno – AI-Powered Chatbot compatible with PHP 8.0+?

Zeno – AI-Powered Chatbot requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Zeno – AI-Powered Chatbot updated?

Zeno – AI-Powered Chatbot was last updated on Feb 24, 2026. Frequent updates are generally a positive security signal.

What is Zeno – AI-Powered Chatbot's security score?

Zeno – AI-Powered Chatbot has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Zeno – AI-Powered Chatbot Security & Risk Analysis

wordpress.org/plugins/zeno-chatbot-ai

An AI-powered WordPress automation chatbot plugin that helps you automate support, engage visitors, and answer questions using OpenAI or Google Gemini

60 active installs v1.3.2 PHP 8.0+ WP 5.8+ Updated Feb 24, 2026

ai-assistantai-chatbotchatbotcustomer-supportsupport-bot

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Zeno – AI-Powered Chatbot Safe to Use in 2026?

Generally Safe

Score 100/100

Zeno – AI-Powered Chatbot has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The zeno-chatbot-ai plugin v1.3.2 exhibits a generally strong security posture, with a commendably low attack surface and a high percentage of properly escaped outputs and prepared SQL statements. The absence of any recorded vulnerabilities in its history is a significant positive indicator, suggesting diligent development practices and a commitment to security. The plugin also demonstrates good security awareness by implementing nonce and capability checks, albeit in a limited number of instances.

However, the presence of the `unserialize` function without explicit context of its usage or sanitization raises a potential concern. If this function is used with user-controlled input, it could lead to deserialization vulnerabilities. While the taint analysis did not flag critical or high severity issues, one flow with an unsanitized path warrants further investigation, as it could be a precursor to a vulnerability if that path leads to a dangerous function or sensitive data.

Overall, the plugin appears to be developed with security in mind, evidenced by its clean vulnerability history and good coding practices. The primary area for potential improvement lies in ensuring the safe handling of any data passed to `unserialize` and thoroughly reviewing the identified unsanitized path to confirm it poses no actual risk.

Key Concerns

Use of unserialize function
Flow with unsanitized path identified

Vulnerabilities

None known

Zeno – AI-Powered Chatbot Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Zeno – AI-Powered Chatbot Code Analysis

Dangerous Functions

Raw SQL Queries

77 prepared

Unescaped Output

185 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$schedule = unserialize( $data->schedule ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.sesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_DBStore.php:397

SQL Query Safety

93% prepared83 total queries

Output Escaping

95% escaped195 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

display_table (src\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Abstract_ListTable.php:736)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Zeno – AI-Powered Chatbot Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 114

actionplugins_loadedboot\app.php:52

actionshutdownboot\app.php:67

filterwp_plugin_check_ignore_directoriesboot\app.php:71

actionwp_enqueue_scriptssrc\Hooks\actions.php:30

actionwp_footersrc\Hooks\actions.php:36

actionadmin_menusrc\Hooks\actions.php:41

actionadmin_enqueue_scriptssrc\Hooks\actions.php:47

actionadmin_noticessrc\Hooks\actions.php:53

actionplugins_loadedsrc\Hooks\actions.php:58

actioninitsrc\Hooks\actions.php:63

actionaction_scheduler_ensure_recurring_actionssrc\Hooks\actions.php:65

actionaction_scheduler_ensure_recurring_actionssrc\Hooks\actions.php:66

actionzeno_chatbot_ai/conversation_summary_requestedsrc\Hooks\actions.php:72

actionzeno_chatbot_ai/internal_content_index_updatedsrc\Hooks\actions.php:85

actionzeno_chatbot_ai/external_content_index_updatedsrc\Hooks\actions.php:89

actionzeno_chatbot_ai/sitemap_content_index_updatedsrc\Hooks\actions.php:93

actionzeno_chatbot_ai/product_content_index_updatedsrc\Hooks\actions.php:97

actionzeno_chatbot_ai/knowledge_notes_index_updatedsrc\Hooks\actions.php:101

actionsave_postsrc\Hooks\actions.php:134

actiondeleted_postsrc\Hooks\actions.php:135

actiontrashed_postsrc\Hooks\actions.php:136

actionuntrashed_postsrc\Hooks\actions.php:137

actiontransition_post_statussrc\Hooks\actions.php:138

filtercron_schedulessrc\Hooks\filters.php:25

filteruser_can_richeditsrc\Hooks\Handler\Admin\MenuHandler.php:61

actionrest_api_initsrc\ServiceProvider\PluginServiceProvider.php:45

actionshutdownsrc\Services\ConversationLifecycleService.php:36

actionaction_scheduler_initsrc\Services\Scheduler\Scheduler.php:56

actionplugins_loadedsrc\Services\Scheduler\scoped-vendor\action-scheduler\action-scheduler.php:36

actionplugins_loadedsrc\Services\Scheduler\scoped-vendor\action-scheduler\action-scheduler.php:39

actioninitsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler.php:196

actioninitsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler.php:197

actioninitsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler.php:198

actioninitsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler.php:199

actioninitsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler.php:200

actioninitsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler.php:202

actionaction_scheduler/migration_completesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler.php:261

actionaction_scheduler_canceled_actionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:67

actionaction_scheduler_begin_executesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:68

actionaction_scheduler_after_executesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:69

actionaction_scheduler_failed_executionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:70

actionaction_scheduler_failed_actionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:71

actionaction_scheduler_unexpected_shutdownsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:72

actionaction_scheduler_reset_actionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:73

actionaction_scheduler_execution_ignoredsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:74

actionaction_scheduler_failed_fetch_actionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:75

actionaction_scheduler_failed_to_schedule_next_instancesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:76

actionaction_scheduler_bulk_cancel_actionssrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:77

actionaction_scheduler_stored_actionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:84

actionwoocommerce_admin_status_content_action-schedulersrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_AdminView.php:56

actionwoocommerce_system_status_reportsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_AdminView.php:57

filterwoocommerce_admin_status_tabssrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_AdminView.php:58

actionadmin_menusrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_AdminView.php:61

actionadmin_noticessrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_AdminView.php:62

actioncurrent_screensrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_AdminView.php:63

filteraction_scheduler_store_classsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_DataController.php:190

filteraction_scheduler_logger_classsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_DataController.php:191

actiondeactivate_pluginsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_DataController.php:192

actionaction_scheduler/progress_ticksrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_DataController.php:197

actionshutdownsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:45

actionaction_scheduler_before_executesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:46

actionaction_scheduler_after_executesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:47

actionaction_scheduler_execution_ignoredsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:48

actionaction_scheduler_failed_executionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:49

actionaction_scheduler/created_tablesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_ListTable.php:554

filtercron_schedulessrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_QueueRunner.php:72

actionshutdownsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_QueueRunner.php:95

actionaction_scheduler_initsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_RecurringActionScheduler.php:28

actionpre_get_commentssrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:44

actionwp_count_commentssrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:45

actioncomment_feed_wheresrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:46

actionload-tools_page_action-schedulersrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:49

actionload-woocommerce_page_wc-statussrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:50

actionadmin_noticessrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:109

actionaction_scheduler_deleted_actionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_DBLogger.php:112

actionaction_scheduler/created_tablesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_HybridStore.php:75

filtercomments_clausessrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:129

actionaction_scheduler_before_process_queuesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:254

actionaction_scheduler_after_process_queuesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:255

actionpre_get_commentssrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:259

actionwp_count_commentssrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:260

actioncomment_feed_wheresrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:261

actionwp_insert_commentsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:264

actionwp_set_comment_statussrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:265

filterwp_insert_post_datasrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:81

filterpre_wp_unique_post_slugsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:82

filterpre_wp_unique_post_slugsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:518

filterwp_insert_post_datasrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:1006

filterpre_wp_unique_post_slugsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:1007

filteraction_scheduler_migration_dependencies_metsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:1094

actionadmin_noticessrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\migration\Controller.php:176

filteraction_scheduler_store_classsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\migration\Controller.php:190

filteraction_scheduler_logger_classsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\migration\Controller.php:191

actioninitsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\migration\Controller.php:192

actionwp_loadedsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\migration\Controller.php:193

actionload-tools_page_action-schedulersrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\migration\Controller.php:196

actionload-woocommerce_page_wc-statussrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\migration\Controller.php:197

actionaction_scheduler_before_schema_updatesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\schema\ActionScheduler_LoggerSchema.php:35

actionaction_scheduler_before_schema_updatesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\schema\ActionScheduler_StoreSchema.php:40

actionaction_scheduler_deleted_actionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Action\Delete_Command.php:40

actionaction_scheduler_execution_ignoredsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Action\Run_Command.php:42

actionaction_scheduler_after_executesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Action\Run_Command.php:43

actionaction_scheduler_failed_executionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Action\Run_Command.php:44

actionaction_scheduler_failed_validationsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Action\Run_Command.php:45

actionaction_scheduler_before_executesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\ActionScheduler_WPCLI_QueueRunner.php:87

actionaction_scheduler_after_executesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\ActionScheduler_WPCLI_QueueRunner.php:88

actionaction_scheduler_failed_executionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\ActionScheduler_WPCLI_QueueRunner.php:89

actionaction_scheduler/migrate_action_dry_runsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Migration_Command.php:137

actionaction_scheduler/no_action_to_migratesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Migration_Command.php:144

actionaction_scheduler/migrate_action_failedsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Migration_Command.php:151

actionaction_scheduler/migrate_action_incompletesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Migration_Command.php:158

actionaction_scheduler/migrated_actionsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Migration_Command.php:167

actionaction_scheduler/migration_batch_startingsrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Migration_Command.php:176

actionaction_scheduler/migration_batch_completesrc\Services\Scheduler\scoped-vendor\action-scheduler\classes\WP_CLI\Migration_Command.php:183

Maintenance & Trust

Zeno – AI-Powered Chatbot Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 24, 2026

PHP min version8.0

Downloads486

Community Trust

Rating100/100

Number of ratings4

Active installs60

Alternatives

Zeno – AI-Powered Chatbot Alternatives

Gapify AI Customer Communication

gapify-ai-customer-communication

100

AI-powered customer support and chat widget. Automate responses, increase sales, and provide 24/7 customer service with Gapify's intelligent chatbot.

20 No CVEs

AI Chatbot for Support & E-Commerce

ai-chatbot-for-support-e-commerce

100

AI-powered chatbot for WordPress and WooCommerce using OpenAI or Gemini, trained on your site content.

0 No CVEs

MxChat – AI Chatbot & Content Generation for WordPress

mxchat-basic

The best free AI chatbot and content generation plugin for WordPress. Train ChatGPT, Claude, Gemini, or Grok on your website content.

1K 2 CVEs

Support Genix – Helpdesk, AI Chatbot, Knowledge Base & Customer Support Ticketing System

support-genix-lite

Manage customer support with a powerful helpdesk & support ticket system — track customer tickets, resolve, and streamline your support workflow.

1K 3 CVEs

AI Chatbot for WordPress by Customerly

customerly

AI Chatbot to support customers, create engaging messages and send automated emails.

400 No CVEs

Developer Profile

Zeno – AI-Powered Chatbot Developer Profile

r_mizan

1 plugin · 60 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Zeno – AI-Powered Chatbot

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/zeno-chatbot-ai/assets/css/backend.css/wp-content/plugins/zeno-chatbot-ai/assets/js/backend.js/wp-content/plugins/zeno-chatbot-ai/assets/css/frontend.css/wp-content/plugins/zeno-chatbot-ai/assets/js/frontend.js/wp-content/plugins/zeno-chatbot-ai/assets/js/vendor.js

Script Paths

/wp-content/plugins/zeno-chatbot-ai/assets/js/vendor.js/wp-content/plugins/zeno-chatbot-ai/assets/js/backend.js/wp-content/plugins/zeno-chatbot-ai/assets/js/frontend.js

Version Parameters

zeno-chatbot-ai/assets/css/backend.css?ver=zeno-chatbot-ai/assets/js/backend.js?ver=zeno-chatbot-ai/assets/css/frontend.css?ver=zeno-chatbot-ai/assets/js/frontend.js?ver=zeno-chatbot-ai/assets/js/vendor.js?ver=

HTML / DOM Fingerprints

CSS Classes

zeno-chatbot-ai-frontend-widget

Data Attributes

data-zeno-chat-bot-id

JS Globals

ZenoChatbot

REST Endpoints

/wp-json/zeno-chatbot-ai/v1/messages/wp-json/zeno-chatbot-ai/v1/conversations/wp-json/zeno-chatbot-ai/v1/settings

Shortcode Output

[zeno-chatbot-ai-widget]

FAQ