Does Comment Controller have any unpatched vulnerabilities?

No. All known vulnerabilities in Comment Controller have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Comment Controller compatible with WordPress 6.9.4?

According to WordPress.org data, Comment Controller 1.1.5 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Comment Controller updated?

Comment Controller was last updated on Feb 3, 2026. Frequent updates are generally a positive security signal.

What is Comment Controller's security score?

Comment Controller has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Comment Controller Security & Risk Analysis

wordpress.org/plugins/comment-controller

Allow users to disable comments for their account, or disable comments site-wide per post type or role.

10 active installs v1.1.5 PHP + WP 3.0+ Updated Feb 3, 2026

commentcommentsdisable

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Comment Controller Safe to Use in 2026?

Generally Safe

Score 100/100

Comment Controller has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The static analysis of 'comment-controller' v1.1.5 reveals a generally strong security posture, with no identified vulnerabilities in the attack surface, dangerous functions, file operations, or external HTTP requests. The plugin demonstrates good practices by utilizing prepared statements for all SQL queries and incorporating nonce and capability checks. However, a significant concern arises from the output escaping analysis, which indicates that 100% of its outputs are not properly escaped. This presents a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, as malicious scripts could be injected and executed within the WordPress environment through user-generated content or plugin output.

Key Concerns

No proper output escaping

Vulnerabilities

None known

Comment Controller Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Comment Controller Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped1 total outputs

Attack Surface

Comment Controller Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 12

actionplugins_loadedclass-comment-controller.php:136

filtercomment_controller_menuincludes\admin\settings\register-settings.php:29

filtercomment_controller_settings_tabsincludes\admin\settings\register-settings.php:45

filtercomment_controller_registered_settings_sectionsincludes\admin\settings\register-settings.php:68

filtercomment_controller_unsavable_tabsincludes\admin\settings\register-settings.php:82

filtercomment_controller_registered_settingsincludes\admin\settings\register-settings.php:143

actioncomments_templateincludes\misc-functions.php:109

filtercomments_openincludes\misc-functions.php:129

actionshow_user_profileincludes\profile.php:61

actionedit_user_profileincludes\profile.php:62

actionpersonal_options_updateincludes\profile.php:91

actionedit_user_profile_updateincludes\profile.php:92

Maintenance & Trust

Comment Controller Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 3, 2026

PHP min version

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Comment Controller Alternatives

Disable Comments – Remove Comments & Stop Spam [Multi-Site Support]

disable-comments

Allows administrators to globally disable comments on their site. Comments can be disabled according to post type. Multisite friendly.

1.0M 1 CVE

Disable Comments

disable-comments-rb

100

Disable Comments - easy tool to disable comments for your blog posts, and pages. Admin can disable comments in just a few clicks.

100K No CVEs

WP Comment Cleaner – Delete All Comments, Disable Comments, Bulk Delete & Remove Comments

delete-all-comments-of-website

100

Delete comments, disable comments, and remove comments in one click. Bulk delete spam and all comments to optimize your WordPress database easily.

20K No CVEs

Disable Comments

wpsimpletools-disable-comments

Completely disables comments functionality from backend and frontend. Just install it, nothing to configure!

10K No CVEs

Comment Link Remove and Other Comment Tools

comment-link-remove

100

Remove Comment Author Link & Links from Comments, Unlink, Disable Comments, Delete All Pending Comments. AI Auto Comment Reply, Voice, Attachments

8K 1 CVE

Developer Profile

Comment Controller Developer Profile

DigitalME

20 plugins · 140K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

3200 days

View full developer profile

Detection Fingerprints

How We Detect Comment Controller

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/comment-controller/vendor/widgitlabs/simple-settings/class-simple-settings.php/wp-content/plugins/comment-controller/includes/admin/settings/register-settings.php/wp-content/plugins/comment-controller/includes/misc-functions.php/wp-content/plugins/comment-controller/includes/profile.php

HTML / DOM Fingerprints

Data Attributes

comment_controller_disallowcomment_controller_disable

FAQ

Comment Controller Security & Risk Analysis

Is Comment Controller Safe to Use in 2026?

Generally Safe

Key Concerns

Comment Controller Security Vulnerabilities

Comment Controller Code Analysis

Output Escaping

Comment Controller Attack Surface

Comment Controller Maintenance & Trust

Maintenance Signals

Community Trust

Comment Controller Alternatives

Disable Comments – Remove Comments & Stop Spam [Multi-Site Support]

Disable Comments

WP Comment Cleaner – Delete All Comments, Disable Comments, Bulk Delete & Remove Comments

Disable Comments

Comment Link Remove and Other Comment Tools

Comment Controller Developer Profile

How We Detect Comment Controller

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Comment Controller