Does Simply Disable Comments have any unpatched vulnerabilities?

No. All known vulnerabilities in Simply Disable Comments have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simply Disable Comments compatible with WordPress 6.9.4?

According to WordPress.org data, Simply Disable Comments 0.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Simply Disable Comments compatible with PHP 7.2+?

Simply Disable Comments requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Simply Disable Comments updated?

Simply Disable Comments was last updated on Nov 21, 2025. Frequent updates are generally a positive security signal.

What is Simply Disable Comments's security score?

Simply Disable Comments has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simply Disable Comments Security & Risk Analysis

wordpress.org/plugins/simply-disable-comments

A simple way to fully disable comments on your WordPress.

5K active installs v0.3 PHP 7.2+ WP 5.0+ Updated Nov 21, 2025

commentsdisable-commentsspam

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simply Disable Comments Safe to Use in 2026?

Generally Safe

Score 100/100

Simply Disable Comments has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The static analysis of the "simply-disable-comments" v0.3 plugin indicates a strong security posture with no identified vulnerabilities in the analyzed code. The plugin demonstrates adherence to good security practices by not utilizing dangerous functions, employing prepared statements for all SQL queries, and ensuring proper output escaping. The absence of file operations and external HTTP requests further reduces the potential attack surface. The complete lack of known CVEs and a clean vulnerability history suggest a stable and well-maintained plugin.

Despite the positive findings, the plugin's purpose of disabling comments might be achieved in a way that relies on WordPress's default behavior or hooks. The absence of explicit capability checks, nonce checks, and a minimal attack surface (zero AJAX handlers, REST API routes, shortcodes, or cron events) could imply that the plugin's functionality is limited or relies heavily on WordPress core's existing security mechanisms. While this is not inherently a weakness, it's an observation about its implementation that limits potential direct vulnerabilities within the plugin's code itself.

Vulnerabilities

None known

Simply Disable Comments Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Simply Disable Comments Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Simply Disable Comments Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 20

actioninitplugin.php:42

actionadmin_initplugin.php:43

actionadmin_menuplugin.php:44

actionadmin_print_styles-index.phpplugin.php:45

actionadmin_print_styles-profile.phpplugin.php:46

actionwp_dashboard_setupplugin.php:47

filterpre_option_default_pingback_flagplugin.php:48

filterxmlrpc_methodsplugin.php:49

filterrest_endpointsplugin.php:50

filterrest_pre_insert_commentplugin.php:51

filtercomments_openplugin.php:52

filterpings_openplugin.php:53

filtercomments_arrayplugin.php:54

actiontemplate_redirectplugin.php:55

actionadmin_initplugin.php:56

actioninitplugin.php:57

actionenqueue_block_editor_assetsplugin.php:58

actionadmin_bar_menuplugin.php:137

actionplugins_loadedplugin.php:309

filteradmin_initplugin.php:320

Maintenance & Trust

Simply Disable Comments Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedNov 21, 2025

PHP min version7.2

Downloads17K

Community Trust

Rating100/100

Number of ratings4

Active installs5K

Alternatives

Simply Disable Comments Alternatives

Disable Comments – Remove Comments & Stop Spam [Multi-Site Support]

disable-comments

Allows administrators to globally disable comments on their site. Comments can be disabled according to post type. Multisite friendly.

1.0M 1 CVE

Comment Link Remove and Other Comment Tools

comment-link-remove

100

Remove Comment Author Link & Links from Comments, Unlink, Disable Comments, Delete All Pending Comments. AI Auto Comment Reply, Voice, Attachments

8K 1 CVE

Turn Off Comments — Hide Comment Box and Stop Spam

turn-off-comments

100

Remove comments functionality from your website!

1K No CVEs

Disable Comments by click5

disable-comments-by-click5

100

Best WordPress plugin to disable comments on your website and protect yourself from spammers.

100 No CVEs

Uncomment – Disable Comments

uncomment

100

Your one-stop shop to completely disable comments and remove all comment functionality from your theme and administration screens.

100 No CVEs

Developer Profile

Simply Disable Comments Developer Profile

handyplugins

10 plugins · 8K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simply Disable Comments

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simply-disable-comments/dist/js/editor.js

Script Paths