WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

Non-prefixed global variable

The plugin defines a global variable without a plugin-specific prefix.

medium weight

Why It Shows Up

WordPress loads many plugins in the same PHP runtime. Plugin Check found a global symbol or hook name that is not clearly namespaced to this plugin.

Why It Matters

Unprefixed globals can collide with WordPress core, themes, or other plugins, causing fatal errors, overwritten values, or handlers running in the wrong context.

How to Fix

  • Choose a short, unique prefix or namespace based on the plugin slug or vendor name.
  • Rename the global variable so it cannot collide with code from another plugin.
  • For public hooks, document the final hook name and keep it stable after release.

Affected Plugins

RankPluginScoreErrorsWarningsInstallsAddedUpdatedTop Issue
#2851TWIPLA (Visitor Analytics IO) – Privacy-First Website Stats, Session Recordings, Heatmaps, Polls and Surveys387149900Output is not escaped
#2852Visual Admin Customizer382051500Input is not sanitized
#2853W2S – Migrate WooCommerce to Shopify38331321k+Non-prefixed global variable
#2854Chatbox Manager3885578400Output is not escaped
#2855SSLCommerz Payment Gateway38211322k+Non-prefixed global variable
#2856Affiliate Sales in Google Analytics and other tools3823841k+Request data is not unslashed
#2857White Label – WordPress Custom Admin, Custom Login Page, and Custom Dashboard382053110k+Output is not escaped
#2858WholesaleX – B2B & Wholesale Plugin for WooCommerce with Wholesale Prices38401802k+Non-prefixed global variable
#2859WishSuite – Wishlist for WooCommerce38761331k+Output is not escaped
#2860Photo Reviews for WooCommerce382622210k+Request data is not unslashed
#2861Vietnam Checkout for WooCommerce389313710k+Nonce verification recommended
#2862WooSwipe WooCommerce Gallery3888823k+Non-prefixed global variable
#2863WP-Ban38991088k+Unsafe printing function
#2864WP Client Reports3895806k+Unsafe printing function
#2865WP-CommentNavi386846700Output is not escaped
#2866WP Content Copy Protection with Color Design3896615k+Non Singular String Literal Domain
#2867WP Mail SMTP SendGrid Edition3810219500Text Domain Mismatch
#2868WP Mailgun SMTP389951900Text Domain Mismatch
#2869mb.miniAudioPlayer – an HTML5 audio player for your mp3 files3820464k+Unsafe printing function
#2870Real-Time Post Statistics for WordPress3863682k+SQL query is not prepared
#2871WP Safe Mode3895552k+Output is not escaped
#2872External Store for Shopify3897332k+Output is not escaped
#2873WP Terms Popup – Terms and Conditions and Privacy Policy WordPress Popups38299583k+Non Singular String Literal Domain
#2874WP Video Lightbox381076730k+Unsafe printing function
#2875WPC Product Options for WooCommerce38571824k+Non-prefixed global variable
#2876mb.YTPlayer for background videos3880291k+Unsafe printing function
#2877Zoho Campaigns3831293k+Non-prefixed global variable
#2878Accounting for WooCommerce3987115500Unsafe printing function
#2879ACF: Google Font Selector3957453k+Output is not escaped
#2880Add Tiktok Pixel for Tiktok ads (+Woocommerce)3994252k+Output is not escaped
#2881Additional Order Filters for WooCommerce39792552k+Nonce verification recommended
#2882Advanced Categories Widget3917041800Output is not escaped
#2883Advanced Product Fields (Product Addons) for WooCommerce3914514550k+Output is not escaped
#2884Affiliate Links – Link Cloaking and Management39231133k+Non-prefixed global variable
#2885AffiliateWP – Affiliate Area Tabs3986263k+Output is not escaped
#2886Accessibility by AllAccessible39200822k+Unsafe printing function
#2887Andreani WooCommerce392186700Non-prefixed global variable
#2888Anything Order by Terms3948931k+Direct Query
#2889Ads.txt & App-ads.txt Manager for WordPress3997232k+Output is not escaped
#2890Archive Control39151671k+Unsafe printing function
#2891Australia Post WooCommerce Extension3999123k+Text Domain Mismatch
#2892Header Footer for Beaver Builder39393110k+Output is not escaped
#2893bbPress Moderation397515500Non Singular String Literal Domain
#2894BIP Pages399825400Short PHP open tag found
#2895Birds Custom Login39196234k+Non Singular String Literal Domain
#2896Blackhole for Bad Bots391236930k+Output is not escaped
#2897Block Editor Bootstrap Blocks3917350900Text Domain Mismatch
#2898BuddyPress Notification Widget395431600Output is not escaped
#2899Bulk Auto Image Alt Text (Alt tag, Alt attribute) optimizer (image SEO)39164610k+Request data is not unslashed
#2900Calculator Builder – Create an Online Calculator39162211k+Non-prefixed global variable