Does Slash Comments have any unpatched vulnerabilities?

No. All known vulnerabilities in Slash Comments have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Slash Comments compatible with WordPress 3.5.2?

According to WordPress.org data, Slash Comments 2.0 has been tested up to WordPress 3.5.2. Check the plugin's changelog for the latest compatibility information.

How often is Slash Comments updated?

Slash Comments was last updated on Oct 13, 2012. Frequent updates are generally a positive security signal.

What is Slash Comments's security score?

Slash Comments has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Slash Comments Security & Risk Analysis

wordpress.org/plugins/slash-comments

This plugin is now obsolete on account of the functionality being included with WordPress.

10 active installs v2.0 PHP + WP + Updated Oct 13, 2012

feedslash

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Slash Comments Safe to Use in 2026?

Generally Safe

Score 85/100

Slash Comments has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The static analysis of slash-comments v2.0 reveals an exceptionally clean codebase with no identified attack surface entry points, dangerous functions, unescaped outputs, file operations, external HTTP requests, or SQL queries that do not utilize prepared statements. Furthermore, the absence of any recorded vulnerabilities, including CVEs, and the clean taint analysis results strongly suggest a robust security posture. The plugin also demonstrates good practices by not bundling external libraries.

While the data indicates a very secure plugin, it is important to note the complete lack of any observed nonce or capability checks. Although there are no exposed entry points in this version, if future updates introduce AJAX handlers, REST API routes, or shortcodes, the absence of these checks could present a significant security risk. The current lack of vulnerability history is a positive indicator, but it should be monitored, especially if the plugin's attack surface were to expand. Overall, slash-comments v2.0 appears to be a highly secure plugin based on the provided analysis, with the primary area for caution being the consistent omission of authorization checks for any potential future expansion of its functionality.

Key Concerns

Consistently missing nonce/capability checks

Vulnerabilities

None known

Slash Comments Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Slash Comments Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Slash Comments Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionadmin_noticesslash-comments.php:30

Maintenance & Trust

Slash Comments Maintenance & Trust

Maintenance Signals

WordPress version tested3.5.2

Last updatedOct 13, 2012

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Slash Comments Alternatives

Smash Balloon Social Photo Feed – Easy Social Feeds Plugin

instagram-feed

Formerly "Instagram Feed". Display clean, customizable, and responsive Instagram feeds from multiple accounts. Supports Instagram oEmbeds.

1.0M 4 CVEs

Google for WooCommerce

google-listings-and-ads

Native integration with Google that allows merchants to easily display their products across Google’s network.

900K 1 CVE

Pinterest for WooCommerce

pinterest-for-woocommerce

100

Get your products in front of Pinterest users searching for ideas and things to buy. Connect your WooCommerce store to make your catalog browsable.

300K No CVEs

Smash Balloon Social Post Feed – Simple Social Feeds for WordPress

custom-facebook-feed

Formerly "Custom Facebook Feed". Display completely customizable Facebook feeds of a Facebook page. Supports Facebook oEmbeds.

200K 8 CVEs

UserFeedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds

userfeedback-lite

Ultimate user feedback plugin to ask questions, surveys, polls, from your website in seconds

200K 7 CVEs

Developer Profile

Slash Comments Developer Profile

rob1n

4 plugins · 180 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Slash Comments

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ