WordPress.PHP.DevelopmentFunctions.error_log_debug_backtrace

error log debug backtrace

Development or debugging behavior appears in code that may run in production.

medium weight

Why It Shows Up

The scan found logging, debugging, path disclosure, `phpinfo()`, error-reporting changes, or similar development-oriented functions.

Why It Matters

Debug output can leak paths, configuration, request data, stack details, or sensitive runtime information.

How to Fix

  • Remove temporary debugging calls before release.
  • If logging is required, guard it with `WP_DEBUG` or a plugin setting intended for administrators.
  • Never show debug details to unauthenticated visitors or normal front-end users.

Affected Plugins

RankPluginScoreErrorsWarningsInstallsAddedUpdatedTop Issue
#101Order Bump for WooCommerce231,7201,562600Output is not escaped
#102MyWorks Sync for WooCommerce & QuickBooks Online232,2929,1015k+Non-prefixed global variable
#103Next Active Directory Integration236832842k+Exception output is not escaped
#104ExpressTechSoftwares Discord Add-on for Paid Memberships Pro23454449700Text Domain Mismatch
#105Postie2340726110k+Output is not escaped
#106Pricing Table by Supsystic231,29944710k+Non Singular String Literal Domain
#107Manago AI & Leadoo AI236444291k+Unsafe printing function
#108Seraphinite Post .DOCX Source231,156110900Output is not escaped
#109Shipment Tracker for Woocommerce234625592k+Missing Arg Domain
#110Local Google Analytics for WordPress – caches external requests235511993k+Output is not escaped
#111Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management232952984k+Non-prefixed global variable
#112Image Optimizer, Resizer and CDN – Sirv236161,0041k+Output is not escaped
#113Site Reviews231,62560360k+Output is not escaped
#114The Events Calendar233,5113,851700k+Text Domain Mismatch
#115W3 Total Cache23307678900k+Non-prefixed global variable
#116WP All Import – Product Import for WooCommerce231,47520920k+Non Singular String Literal Domain
#117WP-Lister Lite for Amazon233,0614,177800Output is not escaped
#118Shield Security – Smart Bot Blocking, Brute-Force Login Protection & File Scanning231,11820240k+Missing Translators Comment
#119WPCal.io – Easy Meeting Scheduler23694595900Direct Query
#120XT Ajax Add To Cart for WooCommerce231,0031,6901k+Non-prefixed global variable
#121XT Quick View for WooCommerce231,0791,829400Non-prefixed global variable
#122XT Variation Swatches for WooCommerce231,0511,834600Non-prefixed global variable
#123404 Solution244861,33810k+Non-prefixed class
#124AcyMailing – An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress245,2301,4647k+Output is not escaped
#125Ad Inserter – Ad Manager & AdSense Ads244,260812300k+Output is not escaped
#126Ivory Search – WordPress Search Plugin241,1731,688100k+Non-prefixed global variable
#127Product Feed Manager For WooCommerce – Sell on 200+ Online Marketplaces242,2483,33810k+slow db query meta key
#128Bookit — Booking & Appointment Calendar245661,4564k+Non-prefixed global variable
#129Bulk Edit Categories and Tags – Create Thousands Quickly on the Editor241,0259844k+Text Domain Mismatch
#130Bulk Edit and Create User Profiles – WP Sheet Editor249799691k+Text Domain Mismatch
#131Message Filter for Contact Form 7241,0571,5941k+Non-prefixed global variable
#132Kognetiks Chatbot for WordPress246511,486600Non-prefixed global variable
#133Contact Form by Supsystic241,9136336k+Non Singular String Literal Domain
#134Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress245293571k+Text Domain Mismatch
#135Custom CSS247036571k+Output is not escaped
#136Enable Media Replace24212276600k+Output is not escaped
#137Event Tickets and Registration243,4114,21790k+Non-prefixed global variable
#138Etsy Integration For WooCommerce241,2464,643900Non-prefixed global variable
#139F12 Profiler24282451500Direct Query
#140Fattura2424312333400Output is not escaped
#141FluentCRM – Email Newsletter, Automation, Email Marketing, Email Campaigns, Optins, Leads, and CRM Solution2419375380k+Direct Query
#142Forminator Forms – Contact Form, Payment Form & Custom Form Builder248261,314600k+Non-prefixed global variable
#143Photo Gallery – Responsive Image Galleries by Supsystic242409120k+Text Domain Mismatch
#144Gallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress2453632410k+Text Domain Mismatch
#145Assets manager, dequeue scripts, dequeue styles for WordPress245922552k+Output is not escaped
#146Simple Calendar – Google Calendar Plugin242,05359250k+Missing direct file access protection
#147Keap Official Opt-in Forms248291,0461k+Non-prefixed global variable
#148Social Slider Feed – Social Media Feed & Gallery Widgets2492970720k+Non-prefixed global variable
#149Dynamics 365 Integration24383166600Output is not escaped
#150Joli Table Of Contents246531,7557k+Non-prefixed global variable