Does Mention comment's Authors by Wabeo have any unpatched vulnerabilities?

No. All known vulnerabilities in Mention comment's Authors by Wabeo have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Mention comment's Authors by Wabeo compatible with WordPress 4.5.33?

According to WordPress.org data, Mention comment's Authors by Wabeo 0.9.8 has been tested up to WordPress 4.5.33. Check the plugin's changelog for the latest compatibility information.

How often is Mention comment's Authors by Wabeo updated?

Mention comment's Authors by Wabeo was last updated on May 30, 2016. Frequent updates are generally a positive security signal.

What is Mention comment's Authors by Wabeo's security score?

Mention comment's Authors by Wabeo has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Mention comment's Authors by Wabeo Security & Risk Analysis

wordpress.org/plugins/mention-comments-authors

When adding a comment, your users can directly mentioning the author of another comment, like facebook or twitter do,using the "@" symbol.

80 active installs v0.9.8 PHP + WP 3.5+ Updated May 30, 2016

commentsfacebookmentionpoketwitter

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Mention comment's Authors by Wabeo Safe to Use in 2026?

Generally Safe

Score 85/100

Mention comment's Authors by Wabeo has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The "mention-comments-authors" plugin v0.9.8 exhibits a mixed security posture. While it demonstrates good practices in SQL query preparation and output escaping, significant concerns arise from its limited attack surface being unprotected. The presence of one AJAX handler without authentication checks is a critical vulnerability, especially when coupled with taint analysis revealing three high-severity flows with unsanitized paths. These flows, if they can be exploited via the unprotected AJAX handler, could lead to serious security breaches, despite the absence of specific known CVEs in its history. The lack of any recorded vulnerabilities is a positive sign, suggesting diligent development in the past, but it does not negate the immediate risks identified in the current static and taint analysis.

Key Concerns

Unprotected AJAX handler
High severity unsanitized taint flows (3)
Dangerous function create_function
Missing nonce checks on AJAX handler

Vulnerabilities

None known

Mention comment's Authors by Wabeo Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Mention comment's Authors by Wabeo Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

9 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

create_functionadd_filter( 'wp_mail_content_type', create_function( '', 'return "text/html"; ' ) );mention-comments-authors.php:268

SQL Query Safety

100% prepared2 total queries

Output Escaping

100% escaped9 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

mca_enqueue_admin_comments_scripts (mention-comments-authors.php:63)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Mention comment's Authors by Wabeo Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_mca_admin_get_previous_commentatorsmention-comments-authors.php:197

WordPress Hooks 10

actioninitmention-comments-authors.php:20

actionwp_enqueue_scriptsmention-comments-authors.php:36

actionadmin_enqueue_scriptsmention-comments-authors.php:62

filtercomment_textmention-comments-authors.php:104

filterget_comment_excerptmention-comments-authors.php:133

actioncomment_formmention-comments-authors.php:157

actioncomment_postmention-comments-authors.php:247

filtermca_send_email_on_mentionmention-comments-authors.php:249

filterwp_mail_content_typemention-comments-authors.php:268

actionwp_set_comment_statusmention-comments-authors.php:274

Maintenance & Trust

Mention comment's Authors by Wabeo Maintenance & Trust

Maintenance Signals

WordPress version tested4.5.33

Last updatedMay 30, 2016

PHP min version

Downloads9K

Community Trust

Rating90/100

Number of ratings12

Active installs80

Alternatives

Mention comment's Authors by Wabeo Alternatives

Twitter Mentions As Comments

twitter-mentions-as-comments

Twitter Mentions as Comments scours Twitter for people talking about your site & silently inserts their Tweets alongside your existing comments.

60 No CVEs

AtMention in Comments

atmention-in-comments

A plugin that enables you to mention @comment__author in comments.

10 No CVEs

SharePulse

sharepulse

SharePulse ranks in a widget your site's posts which have had the greatest share count, using Twitter, LinkedIn, Facebook and your comments.

10 No CVEs

Twitter mentions in posts

twitter-mentions-in-posts

100

Show tweets about your posts right under them.

10 No CVEs

Nextend Social Login and Register

nextend-facebook-connect

One click registration & login plugin for Facebook, Google, X (formerly Twitter) and more. Quick setup and easy configuration.

200K 6 CVEs

Developer Profile

Mention comment's Authors by Wabeo Developer Profile

Willy Bahuaud

8 plugins · 9K total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Mention comment's Authors by Wabeo

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/mention-comments-authors/css/mca-styles.min.css/wp-content/plugins/mention-comments-authors/js/jquery-mention.js/wp-content/plugins/mention-comments-authors/js/jquery-mention.min.js/wp-content/plugins/mention-comments-authors/js/mca-comment-script.js/wp-content/plugins/mention-comments-authors/js/mca-comment-script.min.js/wp-content/plugins/mention-comments-authors/js/mca-comment-script-ajax.js/wp-content/plugins/mention-comments-authors/js/mca-comment-script-ajax.min.js/wp-content/plugins/mention-comments-authors/js/mca-admin-comment-script.js+3 more

Script Paths

/wp-content/plugins/mention-comments-authors/js/jquery-mention.js/wp-content/plugins/mention-comments-authors/js/mca-comment-script.js/wp-content/plugins/mention-comments-authors/js/mca-comment-script-ajax.js/wp-content/plugins/mention-comments-authors/js/mca-admin-comment-script.js/wp-content/plugins/mention-comments-authors/js/mca-admin-editcomment-script.js

Version Parameters

mention-comments-authors/css/mca-styles.min.css?ver=mention-comments-authors/js/jquery-mention.js?ver=mention-comments-authors/js/mca-comment-script.js?ver=mention-comments-authors/js/mca-comment-script-ajax.js?ver=mention-comments-authors/js/mca-admin-comment-script.js?ver=mention-comments-authors/js/mca-admin-editcomment-script.js?ver=

HTML / DOM Fingerprints

CSS Classes

mca-authormca-button

Data Attributes

data-namedata-realnamedata-target

JS Globals

mcaCommentTextareaoldAuthors

FAQ

Mention comment's Authors by Wabeo Security & Risk Analysis

Is Mention comment's Authors by Wabeo Safe to Use in 2026?

Generally Safe

Key Concerns

Mention comment's Authors by Wabeo Security Vulnerabilities

Mention comment's Authors by Wabeo Code Analysis

Dangerous Functions Found

SQL Query Safety

Output Escaping

Data Flow Analysis

Mention comment's Authors by Wabeo Attack Surface

AJAX Handlers 1

Mention comment's Authors by Wabeo Maintenance & Trust

Maintenance Signals

Community Trust

Mention comment's Authors by Wabeo Alternatives

Twitter Mentions As Comments

AtMention in Comments

SharePulse

Twitter mentions in posts

Nextend Social Login and Register

Mention comment's Authors by Wabeo Developer Profile

How We Detect Mention comment's Authors by Wabeo

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Mention comment's Authors by Wabeo