Support » Plugin: Subscribe To Comments Reloaded » Coderisk Analysis indicates StCR is a Highly Vulnerable Plugin

  • Hey @wpkube:

    I have incorporated this plugin for some years, so thank you for building and sharing it.

    Conducting a site audit, I have analyzed installed plugins on Coderisk, and StCR is presented as the riskiest plugin I’ve personally come across.

    I can’t analyze why because I am not the plugin developers; Coderisk requires plugin dev verification to provide details, but I strongly encourage you to explore why this may be.

    You can run the overview analysis at

    Any thoughts?

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author WPKube


    Hi @cyborg88

    We’re not aware of any issues at the moment, so it’s most likely false positives since CodeRisks works by scanning the code and marking what is assumes as a risk.

    But we’ll verify as plugin owners and see their reports. Will notify you of what we find out.

    Thread Starter cyborg88


    Hey @wpkube :

    Thanks for your timely follow up, and for your transparency.

    Please do let us know what you find, and thank you again for investing in this plugin.

    Plugin Author WPKube


    Hi @cyborg88

    We’ll be releasing an update by the end of next week which will bring down that CodeRisk score.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Coderisk Analysis indicates StCR is a Highly Vulnerable Plugin’ is closed to new replies.