Does Delete & Disable Comments have any unpatched vulnerabilities?

No. All known vulnerabilities in Delete & Disable Comments have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Delete & Disable Comments compatible with WordPress 6.8.5?

According to WordPress.org data, Delete & Disable Comments 1.0.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Delete & Disable Comments compatible with PHP 7.2+?

Delete & Disable Comments requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Delete & Disable Comments updated?

Delete & Disable Comments was last updated on Jun 4, 2025. Frequent updates are generally a positive security signal.

What is Delete & Disable Comments's security score?

Delete & Disable Comments has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Delete & Disable Comments Security & Risk Analysis

wordpress.org/plugins/delete-disable-comments

A WordPress plugin that helps to manage comments by deleting spam comments, removing all comments with backup, or disabling comments site-wide.

0 active installs v1.0.1 PHP 7.2+ WP 5.0+ Updated Jun 4, 2025

backupcommentsdeletedisablespam

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Delete & Disable Comments Safe to Use in 2026?

Generally Safe

Score 100/100

Delete & Disable Comments has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago

Risk Assessment

The 'delete-disable-comments' v1.0.1 plugin exhibits a strong security posture based on the provided static analysis and vulnerability history. All identified entry points (AJAX handlers) are protected with nonce and capability checks, which is a critical security best practice. The code also demonstrates excellent adherence to secure coding principles, with 100% of SQL queries using prepared statements and all output being properly escaped. The absence of dangerous functions, file operations, and external HTTP requests further mitigates potential attack vectors. Furthermore, the plugin has no recorded vulnerabilities, including CVEs, which suggests a history of well-written and secure code. This indicates a low risk of exploitation based on the current analysis.

While the plugin's current security is commendable, the static analysis did not include taint analysis, meaning potential vulnerabilities in how data flows through the application might not have been detected. However, given the other robust security measures in place, the likelihood of critical or high-severity taint-related issues is reduced. The plugin's strengths lie in its proactive security measures and clean vulnerability record. The primary weakness, if any, is the lack of taint analysis results, which is a standard component of comprehensive security reviews. Overall, this plugin appears to be a safe and well-developed option for its intended purpose.

Vulnerabilities

None known

Delete & Disable Comments Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Delete & Disable Comments Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

5 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped5 total outputs

Attack Surface

Delete & Disable Comments Attack Surface

Entry Points5

Unprotected0

AJAX Handlers 5

authwp_ajax_ddwpc_delete_spamincludes\functions.php:399

authwp_ajax_ddwpc_delete_allincludes\functions.php:400

authwp_ajax_ddwpc_backup_commentsincludes\functions.php:401

authwp_ajax_ddwpc_toggle_commentsincludes\functions.php:402

authwp_ajax_ddwpc_get_statusincludes\functions.php:403

WordPress Hooks 31

actionadmin_enqueue_scriptsdelete-disable-comments.php:85

actionadmin_menudelete-disable-comments.php:101

filtercomments_opendelete-disable-comments.php:168

filterpings_opendelete-disable-comments.php:169

actionadmin_menudelete-disable-comments.php:172

actionwp_before_admin_bar_renderdelete-disable-comments.php:177

filtercomments_templatedelete-disable-comments.php:183

actiontemplate_redirectdelete-disable-comments.php:186

actionadmin_initdelete-disable-comments.php:189

actionwp_enqueue_scriptsdelete-disable-comments.php:196

filtercomments_arraydelete-disable-comments.php:199

filterrest_endpointsdelete-disable-comments.php:202

filterallowed_block_types_alldelete-disable-comments.php:205

filterpost_comments_feed_linkdelete-disable-comments.php:208

filtercomments_link_feeddelete-disable-comments.php:209

filtercomment_linkdelete-disable-comments.php:210

filterget_comments_linkdelete-disable-comments.php:211

filterget_comments_numberdelete-disable-comments.php:212

actionwidgets_initdelete-disable-comments.php:215

actioninitdelete-disable-comments.php:218

filtercomments_template_query_argsdelete-disable-comments.php:221

filtercomments_opendelete-disable-comments.php:222

filtercomments_arraydelete-disable-comments.php:223

filtertheme_file_pathdelete-disable-comments.php:226

actioninitdelete-disable-comments.php:229

filtercomments_templatedelete-disable-comments.php:329

actiontemplate_redirectdelete-disable-comments.php:330

actionwp_enqueue_scriptsdelete-disable-comments.php:332

filterrest_endpointsdelete-disable-comments.php:334

actionwidgets_initdelete-disable-comments.php:335

actioninitincludes\functions.php:405

Maintenance & Trust

Delete & Disable Comments Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJun 4, 2025

PHP min version7.2

Downloads308

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Delete & Disable Comments Alternatives

Disable Comments – Remove Comments & Stop Spam [Multi-Site Support]

disable-comments

Allows administrators to globally disable comments on their site. Comments can be disabled according to post type. Multisite friendly.

1.0M 1 CVE

AI Disable Comments

ai-disable-comments

A quick way to disable or delete all approved, pending or spam comments and pings only with one click.

70 No CVEs

Comments Shield – Disable Comments & Stop Spam, Bulk Delete & Remove Comments

comments-shield

100

Delete, disable, and clean all comments in one click. Easily manage, bulk delete, or completely disable comments across your entire WordPress site.

40 No CVEs

Habibur Comment Blocker

habibur-comment-blocker

100

Effortlessly disable comments and pingbacks sitewide to improve performance and security.

0 No CVEs

Yakura Commenti – Disable & Remove Comments

yakura-commenti

100

Disable and remove comments site-wide or per post type. Control REST API, feeds, XML-RPC, admin UI, and avatars. Multisite ready

0 No CVEs

Developer Profile

Delete & Disable Comments Developer Profile

Andreas Ostheimer

2 plugins · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Delete & Disable Comments

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/delete-disable-comments/css/admin-style.css/wp-content/plugins/delete-disable-comments/js/admin-script.js

Script Paths

/wp-content/plugins/delete-disable-comments/js/admin-script.js

Version Parameters

delete-disable-comments/css/admin-style.css?ver=delete-disable-comments/js/admin-script.js?ver=

HTML / DOM Fingerprints

JS Globals

ddwpcAjax

FAQ