MxChat – AI Chatbot & Content Generation for WordPress

MxChat is the best free AI chatbot and content generation plugin for WordPress in 2026. Train ChatGPT, Claude, Gemini, or Grok on your website content …

v3.2.10MxChatUpdated 3 days agoAdded 2 years ago2k+ installs100% rating88% support resolved

AI Chatbot ChatGPT content generation customer support woocommerce

Score

3,157

Errors

1,385

Warnings

Change

Category Scores

Security0

Repo94

Performance98

Maintainability0

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

4,542 findings

I18n

2,719

2 issue groups

Security

1,019

12 issue groups

Maintainability

685

11 issue groups

ERRORI18nText Domain MismatchMismatched text domain. Expected 'mxchat-basic' but got 'mxchat'.2,655

Category: I18n
Occurrences: 2,655
Severity: error

Sample message

Mismatched text domain. Expected 'mxchat-basic' but got 'mxchat'.

WordPress.WP.I18n.TextDomainMismatch Reference

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.269

Category: Maintainability
Occurrences: 269
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().239

Category: Maintainability
Occurrences: 239
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

WARNINGSecurityInterpolated Not PreparedUse placeholders and $wpdb->prepare(); found interpolated variable $chat_table at "SHOW TABLES LIKE '$chat_table'"213

Category: Security
Occurrences: 213
Severity: warning

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $chat_table at "SHOW TABLES LIKE '$chat_table'"

WordPress.DB.PreparedSQL.InterpolatedNotPrepared

WARNINGSecurityMissing Unslash$_GET['_wpnonce'] not unslashed before sanitization. Use wp_unslash() or similar171

Category: Security
Occurrences: 171
Severity: warning

Sample message

$_GET['_wpnonce'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGSecurityUnescaped DBParameterUnescaped parameter $chat_table used in $wpdb->get_var()\n$chat_table assigned unsafely at line 1235.156

Category: Security
Occurrences: 156
Severity: warning

Sample message

Unescaped parameter $chat_table used in $wpdb->get_var()\n$chat_table assigned unsafely at line 1235.

PluginCheck.Security.DirectDB.UnescapedDBParameter

WARNINGSecurityMissingProcessing form data without nonce verification.142

Category: Security
Occurrences: 142
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing

ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$additional_class'.140

Category: Security
Occurrences: 140
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$additional_class'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

ERRORMaintainabilitycurl curl setoptUsing cURL functions is highly discouraged. Use wp_remote_get() instead.82

Category: Maintainability
Occurrences: 82
Severity: error

Sample message

Using cURL functions is highly discouraged. Use wp_remote_get() instead.

WordPress.WP.AlternativeFunctions.curl_curl_setopt

ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.64

Category: I18n
Occurrences: 64
Severity: error

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

WordPress.WP.I18n.MissingTranslatorsComment Reference

Show 15 more

WARNINGSecurityInput Not Sanitized61

Category: Security
Occurrences: 61
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_FILES['pdf_file']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

ERRORSecurityNot Prepared29

Category: Security
Occurrences: 29
Severity: error

Sample message

Use placeholders and $wpdb->prepare(); found $alter_sql

WordPress.DB.PreparedSQL.NotPrepared

WARNINGSecurityRecommended29

Category: Security
Occurrences: 29
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

ERRORSecurityUnescaped DBParameter24

Category: Security
Occurrences: 24
Severity: error

Sample message

Unescaped parameter $alter_sql used in $wpdb->query()\n$alter_sql assigned unsafely at line 557.

PluginCheck.Security.DirectDB.UnescapedDBParameter

WARNINGSecurityUnfinished Prepare20

Category: Security
Occurrences: 20
Severity: warning

Sample message

Replacement variables found, but no valid placeholders found in the query.

WordPress.DB.PreparedSQLPlaceholders.UnfinishedPrepare

WARNINGSecurityInput Not Validated18

Category: Security
Occurrences: 18
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_FILES['pdf_file']['error']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

ERRORSecurityUnsafe Printing Function16

Category: Security
Occurrences: 16
Severity: error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunction Reference

WARNINGMaintainabilitySchema Change15

Category: Maintainability
Occurrences: 15
Severity: warning

Sample message

Attempting a database schema change is discouraged.

WordPress.DB.DirectDatabaseQuery.SchemaChange

ERRORMaintainabilityunlink unlink15

Category: Maintainability
Occurrences: 15
Severity: error

Sample message

unlink() is discouraged. Use wp_delete_file() to delete a file.

WordPress.WP.AlternativeFunctions.unlink_unlink

WARNINGMaintainabilityerror log error log12

Category: Maintainability
Occurrences: 12
Severity: warning

Sample message

error_log() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_error_log

ERRORMaintainabilityparse url parse url12

Category: Maintainability
Occurrences: 12
Severity: error

Sample message

parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.

WordPress.WP.AlternativeFunctions.parse_url_parse_url

ERRORMaintainabilitycurl curl close11

Category: Maintainability
Occurrences: 11
Severity: error

Sample message

Using cURL functions is highly discouraged. Use wp_remote_get() instead.

WordPress.WP.AlternativeFunctions.curl_curl_close

ERRORMaintainabilitycurl curl getinfo10

Category: Maintainability
Occurrences: 10
Severity: error

Sample message

Using cURL functions is highly discouraged. Use wp_remote_get() instead.

WordPress.WP.AlternativeFunctions.curl_curl_getinfo

ERRORMaintainabilitycurl curl init10

Category: Maintainability
Occurrences: 10
Severity: error

Sample message

Using cURL functions is highly discouraged. Use wp_remote_get() instead.

WordPress.WP.AlternativeFunctions.curl_curl_init

ERRORMaintainabilitystrip tags strip tags10

Category: Maintainability
Occurrences: 10
Severity: error

Sample message

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

WordPress.WP.AlternativeFunctions.strip_tags_strip_tags

Score History

First score snapshot

yesterday

v3.2.10

Latest

Findings: 4,542
Errors: 3,157
Warnings: 1,385
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
yesterdayLatest	24	4,542	3,157	1,385	v3.2.10	2.0.0

Related Plugins

Block AI Crawlers

1k+ active installs

TextBulker (IA Redaction)

2k+ active installs

WPChat – Live Chat & Messaging Widget for Customer Support

2k+ active installs

Olark Live Chat

1k+ active installs

AI Bud – AI Content Generator, AI Chatbot, ChatGPT, Gemini, GPT-4o

2k+ active installs

LiveChat – Live Chat Plugin for WP Websites

10k+ active installs