Does Simplest comment spam catcher have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Simplest comment spam catcher compatible with WordPress 6.9.0?

According to WordPress.org data, Simplest comment spam catcher 1.0.5 has been tested up to WordPress 6.9.0. Check the plugin's changelog for the latest compatibility information.

How often is Simplest comment spam catcher updated?

Simplest comment spam catcher was last updated on Dec 2, 2025. Frequent updates are generally a positive security signal.

What is Simplest comment spam catcher's security score?

Simplest comment spam catcher has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simplest comment spam catcher Security & Risk Analysis

wordpress.org/plugins/mhm-catch-comment-spam

Add a hidden “honeypot” field to comment forms, to help combat comment spam.

10 active installs v1.0.5 PHP + WP 4.0+ Updated Dec 2, 2025

comment-spamcomment_form_after_fieldsformpreprocess_commentspam

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simplest comment spam catcher Safe to Use in 2026?

Generally Safe

Score 100/100

Simplest comment spam catcher has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago

Risk Assessment

The mhm-catch-comment-spam plugin v1.0.5 exhibits an excellent security posture based on the provided static analysis. The absence of any identified dangerous functions, SQL queries executed without prepared statements, unsanitized output, file operations, external HTTP requests, or nonce/capability checks in the analyzed code signals a rigorous adherence to secure coding practices. Furthermore, the taint analysis revealing zero unsanitized flows indicates a strong defensive mechanism against common injection vulnerabilities. The plugin's vulnerability history is also clean, with no recorded CVEs, further reinforcing its current security trustworthiness.

Vulnerabilities

None known

Simplest comment spam catcher Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Simplest comment spam catcher Release Timeline

v1.0.5Current

v1.0.4

v1.0.3.1

v1.0.3

v1.0.2.1

v1.0.2

v1.0.1

v1.0

Code Analysis

Analyzed Apr 16, 2026

Simplest comment spam catcher Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Simplest comment spam catcher Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

filterpreprocess_commentindex.php:16

actioncomment_form_after_fieldsindex.php:17

Maintenance & Trust

Simplest comment spam catcher Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.0

Last updatedDec 2, 2025

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Simplest comment spam catcher Alternatives

WP Armour – Honeypot Anti Spam

honeypot

Fastest growing Anti Spam plugin. No API calls, subscriptions, captcha or puzzle. Full GDPR complaint. For comments, contact form, login, registration

300K 2 CVEs

Human Presence – Stop Form Spam Without ReCaptcha

ellipsis-human-presence-technology

The #1 Plugin for Blocking Form Spam on WordPress

1K 1 CVE

A1JSpamGuard

a1jspamguard

100

A1JSpamGuard is a simple and efficient WordPress plugin to block spam in comments, registration forms, and contact forms.

10 No CVEs

humanID – Anti-Spam Comment Filter

humanid-spam-filter

100

Replace ReCAPTCHA with a faster, user-friendly solution and block spammers & bots permanently

0 No CVEs

Akismet Anti-spam: Spam Protection

akismet

The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.

6.0M 2 CVEs

Developer Profile

Simplest comment spam catcher Developer Profile

Mark Howells-Mead

10 plugins · 2K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simplest comment spam catcher

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/mhm-catch-comment-spam/mhm-catch-comment-spam.php

Version Parameters

mhm-catch-comment-spam/mhm-catch-comment-spam.php?ver=

HTML / DOM Fingerprints

Shortcode Output

<input type="hidden" name="mhmcatchcommentspam" />

FAQ