Does Real Time Comments With Pusher have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Real Time Comments With Pusher compatible with WordPress 5.8.13?

According to WordPress.org data, Real Time Comments With Pusher 1.1.3 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is Real Time Comments With Pusher compatible with PHP 7.4+?

Real Time Comments With Pusher requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Real Time Comments With Pusher updated?

Real Time Comments With Pusher was last updated on Jan 5, 2022. Frequent updates are generally a positive security signal.

What is Real Time Comments With Pusher's security score?

Real Time Comments With Pusher has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Real Time Comments With Pusher Security & Risk Analysis

wordpress.org/plugins/real-time-comments-with-pusher

Display comments in real time via ajax or pusher api.

0 active installs v1.1.3 PHP 7.4+ WP 5.0+ Updated Jan 5, 2022

ajaxcommentformcommentspusherrealtime

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Real Time Comments With Pusher Safe to Use in 2026?

Generally Safe

Score 85/100

Real Time Comments With Pusher has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "real-time-comments-with-pusher" plugin version 1.1.3 exhibits a generally strong security posture based on the provided static analysis. The absence of any recorded CVEs and the plugin's clean vulnerability history are positive indicators. Furthermore, the code analysis shows no dangerous functions, no direct SQL queries (all use prepared statements), and no file operations or external HTTP requests, which significantly reduces the attack surface. The high percentage of properly escaped output is also a good practice. However, a notable concern is the complete lack of nonce checks and capability checks, particularly concerning given the plugin likely handles user-generated content and real-time updates which could potentially be exploited if not properly secured against CSRF or unauthorized access. While no direct taint flows were identified in this analysis, the absence of these critical security checks presents a latent risk.

Key Concerns

Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Real Time Comments With Pusher Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Real Time Comments With Pusher Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

Real Time Comments With Pusher Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

39 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Guzzle

Output Escaping

87% escaped45 total outputs

Attack Surface

Real Time Comments With Pusher Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 11

actioninitclasses\Boot.php:62

actionrest_api_initclasses\Boot.php:67

actionwp_enqueue_scriptsclasses\Enqueue.php:10

actionadmin_enqueue_scriptsclasses\Enqueue.php:11

filterrest_allow_anonymous_commentsclasses\Enqueue.php:12

filtercomments_templateclasses\Form.php:13

actionrest_after_insert_commentclasses\NewComment.php:10

actionadmin_menuclasses\Settings\AdminSettingsPages.php:31

actionadmin_initclasses\Settings\Sections\LayoutSettings.php:21

actionadmin_initclasses\Settings\Sections\MainSettings.php:21

actionadmin_initclasses\Settings\Sections\PusherSettings.php:21

Maintenance & Trust

Real Time Comments With Pusher Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedJan 5, 2022

PHP min version7.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Real Time Comments With Pusher Alternatives

Comments – wpDiscuz

wpdiscuz

AJAX powered realtime comments. Designed to extend WordPress native comments. Custom comment forms/fields. Making comments has never been so awesome!

80K 24 CVEs

AnyComment

anycomment

AnyComment is blazing-fast commenting plugin based on React for WordPress.

3K 3 unpatched

Ajaxify Comments – Ajax and Lazy Loading Comments

wp-ajaxify-comments

100

Ajaxify Comments speeds up your comment section, allowing for lazy loading comments, instant comment posting, and seamless success and error messages.

3K No CVEs

Comment Edit Core – Simple Comment Editing

simple-comment-editing

Allow your users to edit their comments for a period of time. Adjust the comment timer and save some admin headaches.

2K 2 CVEs

FluentComments – Spam protection, AntiSpam, Ajax Enhanced Comments

fluent-comments

100

AJAX powered realtime comments. Designed to prevent spams, performance and make comments beautiful again 🚀

700 No CVEs

Developer Profile

Real Time Comments With Pusher Developer Profile

Gerhard Popp

1 plugin · 0 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Real Time Comments With Pusher

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/real-time-comments-with-pusher/dist/main.css/wp-content/plugins/real-time-comments-with-pusher/dist/main.min.js/wp-content/plugins/real-time-comments-with-pusher/dist/main.js/wp-content/plugins/real-time-comments-with-pusher/dist/dark.css/wp-content/plugins/real-time-comments-with-pusher/dist/dark.min.js/wp-content/plugins/real-time-comments-with-pusher/dist/dark.js/wp-content/plugins/real-time-comments-with-pusher/dist/light.css/wp-content/plugins/real-time-comments-with-pusher/dist/light.min.js+3 more

Script Paths

/wp-content/plugins/real-time-comments-with-pusher/dist/admin.min.js/wp-content/plugins/real-time-comments-with-pusher/dist/admin.js/wp-content/plugins/real-time-comments-with-pusher/dist/main.css/wp-content/plugins/real-time-comments-with-pusher/dist/main.min.js/wp-content/plugins/real-time-comments-with-pusher/dist/main.js/wp-content/plugins/real-time-comments-with-pusher/dist/dark.css+5 more

Version Parameters

/wp-content/plugins/real-time-comments-with-pusher/dist/admin.min.js?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/admin.js?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/main.css?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/main.min.js?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/main.js?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/dark.css?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/dark.min.js?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/dark.js?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/light.css?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/light.min.js?ver=/wp-content/plugins/real-time-comments-with-pusher/dist/light.js?ver=

HTML / DOM Fingerprints

CSS Classes

rtc-main-borderrtc-main-bgrtc-avatar-radiusrtc-main-color

Data Attributes

data-localize="submit"data-localize="submit_warning"data-localize="comment_placeholder"data-localize="name_placeholder"data-localize="email_placeholder"data-localize="name_required"+9 more

JS Globals

translationsrtc_xhr

REST Endpoints

/wp-json/real-time-comments/

FAQ