WPBot – AI ChatBot for Live Support, Lead Generation, AI Services

chatbot · by quantumcloud · wordpress.org ↗ · SVN ↗
Active installs
5k+
Current version
8.5.0
Added
2018-08-30
Last updated
2026-06-30 (2d ago)
First seen by beacon
2mo ago
Total downloads
1,316,212

Statistics

2024-06-17 → 2026-07-01 · 745 days

Active-install and ratings figures are the last values WP Beacon captured before wordpress.org closed this plugin — wp.org no longer publishes them. Daily downloads are still updated.

Downloads today
2,697
7-day total 9,741
Week over week
▲ +27%
vs prior 7 days
30-day trend
rising
▼ -13% MoM
Abandonment
●●○○○
closed on wp.org
Downloads/day Linear trend
4k3k2k92902024-062024-102025-022025-062025-102026-022026-07
3k3k2k84802026-042026-042026-052026-052026-062026-06
3k2k2k79102026-062026-062026-062026-062026-062026-06

Active versions

8.4other8.28.3
8.4 · 40.8%other · 38.1%8.2 · 10.6%8.3 · 10.6%

Ratings last captured

No ratings data.

Historical audits (1)

Past investigations, all resolved. No current threat.
  • Benign Audit #18 baseline 0.9.0 → head 8.2.4 2mo ago

Alerts (0)

No open alerts.

Show 1 resolved alert
Critical code_pattern Resolved · audit:benign 2026-04-30 11:06:27 (2mo ago)
Slugchatbot
Patternunserialize_after_remote_call
Kindbuiltin
Version8.2.4
Hit count2
First hit
File
includes/integration/openai/plugin-upgrader/classes/plugin-upgrader.php
Line
190
Snippet
L185: $request = wp_remote_post($this->update_path, $params ); → L190: return @unserialize( $request['body'] );
Explanationa remote HTTP fetch (`wp_remote_*` / `curl_exec`) is followed by `@unserialize` within the same file — classic PHP Object Injection C2 gadget. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak. A real finding regardless of author intent: any plugin that deserializes remote responses without validation is a latent RCE chain if the remote endpoint is ever compromised.
View raw JSON
{
    "slug": "chatbot",
    "pattern": "unserialize_after_remote_call",
    "kind": "builtin",
    "version": "8.2.4",
    "hit_count": 2,
    "first_hit": {
        "file": "includes/integration/openai/plugin-upgrader/classes/plugin-upgrader.php",
        "line": 190,
        "snippet": "L185: $request = wp_remote_post($this->update_path, $params );  \u2192  L190: return @unserialize( $request['body'] );"
    },
    "explanation": "a remote HTTP fetch (`wp_remote_*` / `curl_exec`) is followed by `@unserialize` within the same file \u2014 classic PHP Object Injection C2 gadget. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak. A real finding regardless of author intent: any plugin that deserializes remote responses without validation is a latent RCE chain if the remote endpoint is ever compromised."
}

SVN committers (2)

Accounts with actual commit access to chatbot on plugins.svn.wordpress.org, reconstructed from svn log. This is the list that matters for ownership changes — not the readme contributors.

Committer Member since Commits First commit Latest commit
QuantumCloud 2011-12-11 627 2018-08-30 · r1933241 2026-06-24 · r3584860
plugin-master 2007-03-09 1 2018-08-30 · r1932722 2018-08-30 · r1932722

Readme contributors (1)

Names the plugin's readme declares as contributors. A soft signal — anyone can be listed. The SVN access column is the ground-truth cross-reference: does this contributor actually commit code?

Contributor Member since SVN access Status
QuantumCloud 2011-12-11 627 commits Active

Versions (100 most recent)

Version Released Download
8.4.9 zip
8.5.0 zip
8.4.6 zip
8.4.7 zip
8.4.8 zip
8.4.4 zip
8.4.2 zip
8.4.3 zip
8.4.1 2026-06-04 · 28d ago zip
8.3.9 2026-06-02 · 1mo ago zip
8.3.8 2026-06-01 · 1mo ago zip
8.3.7 2026-05-27 · 1mo ago zip
8.3.6 2026-05-25 · 1mo ago zip
8.3.5 2026-05-21 · 1mo ago zip
8.3.4 2026-05-19 · 1mo ago zip
8.3.3 2026-05-19 · 1mo ago zip
8.3.2 2026-05-15 · 1mo ago zip
8.3.1 2026-05-14 · 1mo ago zip
8.3.0 2026-05-13 · 1mo ago zip
8.2.9 2026-05-12 · 1mo ago zip
8.2.8 2026-05-11 · 1mo ago
8.2.7 2026-05-06 · 1mo ago zip
8.2.6 2026-05-05 · 1mo ago zip
8.2.5 2026-05-01 · 2mo ago zip
8.2.4 2026-04-29 · 2mo ago zip
8.2.3 2026-04-28 · 2mo ago zip
8.2.2 2026-04-24 · 2mo ago zip
8.2.1 2026-04-23 · 2mo ago
8.2.0 2026-04-16 · 2mo ago
8.1.0 2026-04-14 · 2mo ago zip
8.0.0 2026-04-13 · 2mo ago zip
7.9.9 2026-04-09 · 2mo ago zip
7.9.8 2026-04-07 · 2mo ago zip
7.9.7 2026-04-06 · 2mo ago zip
7.9.6 2026-04-03 · 3mo ago zip
7.9.5 2026-04-02 · 3mo ago zip
7.9.4 2026-03-31 · 3mo ago zip
7.9.3 2026-03-27 · 3mo ago zip
7.9.2 2026-03-24 · 3mo ago zip
7.9.1 2026-03-19 · 3mo ago zip
7.9.0 2026-03-18 · 3mo ago zip
7.8.9 2026-03-16 · 3mo ago zip
7.8.8 2026-03-12 · 3mo ago zip
7.8.7 2026-03-10 · 3mo ago zip
7.8.6 2026-03-05 · 3mo ago zip
7.8.5 2026-03-03 · 4mo ago zip
7.8.4 2026-02-26 · 4mo ago zip
7.8.3 2026-02-24 · 4mo ago zip
7.8.2 2026-02-20 · 4mo ago zip
7.8.1 2026-02-19 · 4mo ago zip
7.8.0 2026-02-17 · 4mo ago zip
7.7.9 2026-02-13 · 4mo ago zip
7.7.8 2026-02-13 · 4mo ago zip
7.7.7 2026-02-10 · 4mo ago zip
7.7.6 2026-02-06 · 4mo ago zip
7.7.5 2026-02-03 · 4mo ago zip
7.7.4 2026-02-02 · 5mo ago zip
7.7.3 2026-01-23 · 5mo ago zip
7.7.2 2026-01-21 · 5mo ago zip
7.7.1 2026-01-20 · 5mo ago zip
7.7.0 2026-01-19 · 5mo ago zip
7.6.9 2026-01-15 · 5mo ago zip
7.6.8 2026-01-13 · 5mo ago zip
7.6.7 2026-01-08 · 5mo ago zip
7.6.6 2026-01-06 · 5mo ago zip
7.6.5 2026-01-01 · 6mo ago zip
7.6.4 2025-12-30 · 6mo ago zip
7.6.3 2025-12-24 · 6mo ago zip
7.6.2 2025-12-23 · 6mo ago zip
7.6.1 2025-12-19 · 6mo ago zip
7.6.0 2025-12-19 · 6mo ago zip
7.5.9 2025-12-18 · 6mo ago zip
7.5.8 2025-12-17 · 6mo ago zip
7.5.7 2025-12-15 · 6mo ago zip
7.5.6 2025-12-12 · 6mo ago zip
7.5.5 2025-12-11 · 6mo ago zip
7.5.4 2025-12-09 · 6mo ago zip
7.5.3 2025-12-04 · 7mo ago zip
7.5.2 2025-12-03 · 7mo ago zip
7.5.1 2025-12-01 · 7mo ago zip
7.5.0 2025-11-28 · 7mo ago zip
7.4.9 2025-11-27 · 7mo ago zip
7.4.8 2025-11-25 · 7mo ago zip
7.4.7 2025-11-21 · 7mo ago zip
7.4.6 2025-11-20 · 7mo ago zip
7.4.5 2025-11-18 · 7mo ago zip
7.4.4 2025-11-14 · 7mo ago zip
7.4.3 2025-11-12 · 7mo ago zip
7.4.2 2025-11-11 · 7mo ago zip
7.4.1 2025-11-10 · 7mo ago zip
7.4.0 2025-11-07 · 7mo ago zip
7.3.9 2025-11-06 · 7mo ago zip
7.3.8 2025-11-04 · 8mo ago zip
7.3.7 2025-11-03 · 8mo ago zip
7.3.6 2025-10-31 · 8mo ago zip
7.3.5 2025-10-28 · 8mo ago zip
7.3.4 2025-10-27 · 8mo ago zip
7.3.3 2025-10-27 · 8mo ago zip
7.3.2 2025-10-24 · 8mo ago zip
7.3.1 2025-10-23 · 8mo ago zip