Support » Plugin: Wise Chat » I think my Wise Chat was hacked?

  • Resolved chiachatter


    First of all, I took my Wise Chat Pro down, so you won’t see anything when you go to the link above.

    I saw a notification that I had left the chat but I saw my name on the list and wanted to know if I was really still there so I asked the other user – Anonymous3 – “Hi, Anonymous3, how is your Monday going” but in the chat window it appeared as though Anon3 was the one who had written it. I had no admin control, couldn’t kick or ban. Then s/he left. The first thing I did was remove my Wise Chat short code from the page. Then I changed my setting to no longer allow anonymous users. Here are my questions:

    1 – is not allowing anonymous users enough to keep this from happening again?
    2 – will I need to completely delete my original channel and start a new one?
    3 – if I don’t allow anon users, will my friends/family who don’t have a WP account still be able to use my chat?
    4 – a hacker taking over admin privileges to the chat doesn’t mean that s/he also took over anything else with the plug-in, I’m assuming? Please correct me if I am wrong.

    It is interesting that, in reading through the last year+ of posts to this forum nobody else has reported the same thing, so I’m guessing this doesn’t happen often.

    I use the Pro version which I only just bought a few days ago after using the free version successfully for several weeks, if that makes any difference?

    Thank you for any light you can shed for me on this!

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Marcin


    Hello @chiachatter

    Thank you for your message.

    It is very likely no one has hacked your site / chat. When you log out from WordPress account on your site Wise Chat user is turned into anonymous account. This is crucial. Most probably you saw your own user there. Also – the code that detects if user left / joined the chat does this with some margin of error. It’s all because of the limitation of Ajax approach we used in the chat. The same is for the list of users. The list refreshes quite rarely (30-120 s). It is even possible that if you do it quick your user will never appear on the users lists. Please treat the features below as an approximation of the reality:
    – join / leave message
    – the users list
    If the chat was based on WebSockets these features would be much more accurate. There is no need to delete plugin or the channel. If you do not want to allow for anonymous visitors please disable the access for anonymous users.

    For Pro-related support please contact us directly on

    Best regards

    Thread Starter chiachatter


    I VERY MUCH appreciate your detailed explanation! What I thought I was seeing occur, then, has another explanation. I am so glad I decided to write to you, Marcin! BTW of the chats I tried for my website I love Wise Chat the best, and really didn’t want to give it up – even my users have commented on how much they like it!

    Thanks again for your reply and also for a great product!

    Plugin Author Marcin


    Thank you @chiachatter !

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘I think my Wise Chat was hacked?’ is closed to new replies.