WordPress.PHP.DevelopmentFunctions.error_log_print_r
error log print r
Development or debugging behavior appears in code that may run in production.
Why It Shows Up
The scan found logging, debugging, path disclosure, `phpinfo()`, error-reporting changes, or similar development-oriented functions.
Why It Matters
Debug output can leak paths, configuration, request data, stack details, or sensitive runtime information.
How to Fix
- Remove temporary debugging calls before release.
- If logging is required, guard it with `WP_DEBUG` or a plugin setting intended for administrators.
- Never show debug details to unauthenticated visitors or normal front-end users.
Affected Plugins
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #1101 | One Click SSL | 40 | 136 | 62 | 10k+ | Unsafe printing function | ||
| #1102 | Quiz Cat – WordPress Quiz Plugin | 40 | 151 | 69 | 4k+ | Output is not escaped | ||
| #1103 | Tagging | 40 | 33 | 37 | 500 | Output is not escaped | ||
| #1104 | Multiple Shipping Addresses for WooCommerce (Address Book) | 40 | 21 | 208 | 2k+ | Non-prefixed global variable | ||
| #1105 | Track Geolocation Of Users Using Contact Form 7 | 40 | 17 | 173 | 900 | Nonce verification recommended | ||
| #1106 | Ultimate Custom Cursor | 40 | 138 | 3 | 800 | Output is not escaped | ||
| #1107 | UTM Leads Tracker – XLPlugins | 40 | 21 | 38 | 400 | Output is not escaped | ||
| #1108 | WooBooster Partial COD for WooCommerce | 40 | 90 | 51 | 500 | Text Domain Mismatch | ||
| #1109 | Payment Gateway – nexi Alpha Bank for WooCommerce | 40 | 28 | 45 | 1k+ | Missing nonce verification | ||
| #1110 | Word Balloon | 40 | 20 | 125 | 10k+ | Request data is not unslashed | ||
| #1111 | WP Compress for MainWP | 40 | 20 | 36 | 700 | Output is not escaped | ||
| #1112 | WP Discord Invite | 40 | 73 | 42 | 400 | Unsafe printing function | ||
| #1113 | Cache control by Cacholong | 41 | 87 | 30 | 500 | Non Singular String Literal Domain | ||
| #1114 | CMS Tree Page View – Reorder Pages with a Drag-and-Drop Tree | 41 | 121 | 96 | 50k+ | Unsafe printing function | ||
| #1115 | Comments Like Dislike | 41 | 172 | 20 | 5k+ | Non Singular String Literal Domain | ||
| #1116 | Debug Bar | 41 | 64 | 25 | 20k+ | Output is not escaped | ||
| #1117 | Disable Everything | 41 | 90 | 16 | 30k+ | Output is not escaped | ||
| #1118 | Payment Gateway of PayPal for WooCommerce | 41 | 44 | 184 | 7k+ | Nonce verification recommended | ||
| #1119 | Ko-fi Button | 41 | 75 | 15 | 5k+ | Output is not escaped | ||
| #1120 | Central Color Palette | 41 | 73 | 33 | 10k+ | Output is not escaped | ||
| #1121 | MaxLimits – Increase Maximum Upload, Post & PHP Limits | 41 | 99 | 16 | 2k+ | Unsafe printing function | ||
| #1122 | Social Login | 41 | 8 | 110 | 5k+ | Input is not sanitized | ||
| #1123 | Live Chat & AI Chatbot – onWebChat | 41 | 32 | 90 | 700 | error log error log | ||
| #1124 | Variation Swatches for WooCommerce | 41 | 29 | 126 | 9k+ | Missing nonce verification | ||
| #1125 | Simple CPT | 41 | 280 | 60 | 4k+ | Unsafe printing function | ||
| #1126 | SnapScan Payment Gateway | 41 | 33 | 30 | 700 | Output is not escaped | ||
| #1127 | Checkout Field Editor (Checkout Manager) for WooCommerce | 41 | 9 | 88 | 400k+ | Nonce verification recommended | ||
| #1128 | Pledged Plugins PCI Gateway for NMI and WooCommerce | 41 | 160 | 42 | 3k+ | Text Domain Mismatch | ||
| #1129 | Admin Options Pages | 42 | 3 | 284 | 500 | Nonce verification recommended | ||
| #1130 | CCAvenue Payment Gateway for WooCommerce | 42 | 53 | 40 | 3k+ | Text Domain Mismatch | ||
| #1131 | FCM Push Notification from WP | 42 | 43 | 16 | 500 | Non Singular String Literal Domain | ||
| #1132 | FooTable | 42 | 86 | 7 | 1k+ | Output is not escaped | ||
| #1133 | Gelato Integration for WooCommerce | 42 | 36 | 32 | 5k+ | Output is not escaped | ||
| #1134 | Posts Like Dislike | 42 | 157 | 39 | 6k+ | Non Singular String Literal Domain | ||
| #1135 | SEO Backlink Monitor | 42 | 86 | 105 | 700 | Output is not escaped | ||
| #1136 | WP Cron Cleaner | 42 | 51 | 38 | 500 | Unsafe printing function | ||
| #1137 | WP Media Category Management | 42 | 9 | 176 | 6k+ | Nonce verification recommended | ||
| #1138 | Advanced FAQ Manager | 43 | 8 | 59 | 2k+ | Input is not sanitized | ||
| #1139 | Good Old Twitter Feed Widget | 43 | 110 | 10 | 400 | Text Domain Mismatch | ||
| #1140 | Per User Prompt for Google Authenticator | 43 | 8 | 52 | 400 | Nonce verification recommended | ||
| #1141 | WP SmartCrop | 43 | 43 | 12 | 4k+ | Output is not escaped | ||
| #1142 | Creative Addons for Elementor | 44 | 63 | 100 | 800 | Missing Arg Domain | ||
| #1143 | ELEX WooCommerce Role Based Pricing | 44 | 213 | 196 | 2k+ | Non-prefixed global variable | ||
| #1144 | Ocean Modal Window | 44 | 26 | 44 | 10k+ | Output is not escaped | ||
| #1145 | Setmore Appointments | 44 | 45 | 13 | 4k+ | Output is not escaped | ||
| #1146 | Shippit for WooCommerce | 44 | 127 | 26 | 900 | Text Domain Mismatch | ||
| #1147 | Trusty Whistleblowing Solution | 44 | 234 | 16 | 400 | Text Domain Mismatch | ||
| #1148 | Back In Stock Notifier for WooCommerce | WooCommerce Waitlist Pro | 45 | 26 | 117 | 20k+ | Non-prefixed hook name | ||
| #1149 | Evergreen Countdown Timer | 45 | 193 | 35 | 2k+ | wp function not compatible with requires wp | ||
| #1150 | Product Visibility by User Role for WooCommerce | 45 | 36 | 35 | 6k+ | Missing Translators Comment |