WordPress.DB.DirectDatabaseQuery.NoCaching

No Caching

The plugin runs a direct database query instead of using a higher-level WordPress API or cache-aware pattern.

medium weight

Why It Shows Up

Plugin Check found `$wpdb` access that queries the database directly, changes schema, or bypasses normal caching expectations.

Why It Matters

Direct queries can be correct, but they are easier to make unsafe, slower at scale, and harder for WordPress to cache or filter.

How to Fix

  • Use WordPress APIs such as post, term, metadata, option, or user functions when they fit the task.
  • If direct SQL is necessary, prepare dynamic values and add a clear caching strategy for repeated reads.
  • Keep schema changes in activation or upgrade routines and make them idempotent.

Affected Plugins

RankPluginScoreErrorsWarningsInstallsAddedUpdatedTop Issue
#1501WooCommerce Legacy REST API31324177400k+Missing Translators Comment
#1502Tooltips for WordPress313122525k+Output is not escaped
#1503Worldline Global Online Pay for WooCommerce3116086500Missing direct file access protection
#1504WPGatsby31125553k+Text Domain Mismatch
#1505HireZoot – Job Listings, Career Page & Recruitment Tool311455540k+Non-prefixed global variable
#1506WP Simple Booking Calendar3133738020k+Output is not escaped
#1507WP Visitor Statistics (Real Time Traffic)3135369120k+Nonce verification recommended
#1508WP ULike – Like & Dislike Buttons for Engagement and Feedback3126935860k+Output is not escaped
#1509WP125311781843k+Unsafe printing function
#1510Hosting Benchmark tool312021154k+rand rand
#1511One to one user Chat by WPGuppy3174187700Non-prefixed global variable
#1512WPDoctor Malware Scanner & Vulnerability Checker & IP blocker with Hack monitor Lite31133438600Non-prefixed global variable
#1513YITH Color and Label Variations for WooCommerce313931,4289k+Non-prefixed global variable
#1514YITH WooCommerce Brands Add-On313931,4259k+Non-prefixed global variable
#1515YITH WooCommerce Catalog Mode313801,41860k+Non-prefixed global variable
#1516YITH WooCommerce Featured Video313831,4343k+Non-prefixed global variable
#1517YITH Frequently Bought Together for WooCommerce313891,4528k+Non-prefixed global variable
#1518YITH WooCommerce Order & Shipment Tracking313801,4207k+Non-prefixed global variable
#1519YITH Request a Quote for WooCommerce314081,48110k+Non-prefixed global variable
#1520YITH WooCommerce Tab Manager313951,4294k+Non-prefixed global variable
#1521Zendesk Support for WordPress31195882k+Output is not escaped
#1522PayPal Zettle POS for WooCommerce31302444k+Exception output is not escaped
#1523ActiveDEMAND321571611k+Output is not escaped
#1524Advanced Access Manager – Access Governance for WordPress3284962100k+Output is not escaped
#1525AI Alt Text Generator3276241k+Missing Translators Comment
#1526All in One Time Clock Lite – Tracking Employee Time Has Never Been Easier32325102600Missing Arg Domain
#1527annasta Filters for WooCommerce321,0734412k+Text Domain Mismatch
#1528APCu Manager3215112610k+Output is not escaped
#1529Author Avatars List/Block32851354k+Non-prefixed hook name
#1530Auto YouTube Importer323381731k+Text Domain Mismatch
#1531Better Chat Support for Messenger32731031k+Interpolated SQL is not prepared
#1532Better Robots.txt – AI-Ready Crawl Control & Bot Governance3254855k+error log error log
#1533Blog2Social: Social Media Auto Post & Scheduler32796250k+Direct Query
#1534BuddyPress for LearnDash321902841k+Output is not escaped
#1535Quantity Discounts, Breaks & Product Bundles for Woocommerce By Bundler32147319400Direct Query
#1536Code Manager32217261500Nonce verification recommended
#1537Vimeotheque – Vimeo WordPress Plugin & Video Gallery326422642k+Unsafe printing function
#1538Ultimate WooCommerce Filters32322207600Unsafe printing function
#1539Contact Form Block326477500Non Singular String Literal Domain
#1540Cooked – Recipe Management324622753k+Output is not escaped
#1541CSV Import and Exporter32831381k+Non-prefixed global variable
#1542Currency Switcher for WooCommerce3235726310k+Text Domain Mismatch
#1543Download Attachments32691888k+Non-prefixed hook name
#1544Enter Addons – Ultimate Template Builder for Elementor3282721k+Output is not escaped
#1545Fable Extra32792824k+Non-prefixed global variable
#1546FA Lite – WP responsive slider plugin32726140500Unsafe printing function
#1547Freesoul Deactivate Plugins – Disable plugins on individual WordPress pages32537739k+Nonce verification recommended
#1548WP Gravity Forms HubSpot32771160600Text Domain Mismatch
#1549CRM Perks Integration for Gravity Forms and Salesforce328071781k+Text Domain Mismatch
#1550WP Gravity Forms Zoho CRM and Bigin32750174400Text Domain Mismatch