WordPress.PHP.DevelopmentFunctions.error_log_print_r
error log print r
Development or debugging behavior appears in code that may run in production.
Why It Shows Up
The scan found logging, debugging, path disclosure, `phpinfo()`, error-reporting changes, or similar development-oriented functions.
Why It Matters
Debug output can leak paths, configuration, request data, stack details, or sensitive runtime information.
How to Fix
- Remove temporary debugging calls before release.
- If logging is required, guard it with `WP_DEBUG` or a plugin setting intended for administrators.
- Never show debug details to unauthenticated visitors or normal front-end users.
Affected Plugins
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #1251 | onepay Payment Gateway For WooCommerce | 70 | 49 | 13 | 900 | Text Domain Mismatch | ||
| #1252 | Remove Taxonomy Base Slug | 70 | 12 | 18 | 5k+ | Deprecated parameter: get_terms parameter 2 | ||
| #1253 | Quick and Easy FAQs | 71 | 92 | 9 | 10k+ | Non Singular String Literal Domain | ||
| #1254 | Webhook for Discord | 71 | 119 | 20 | 400 | Text Domain Mismatch | ||
| #1255 | WooCommerce Shipping | 71 | 48 | 70k+ | Direct Query | |||
| #1256 | WP 4 Me Title Remover | 71 | 17 | 13 | 1k+ | Missing direct file access protection | ||
| #1257 | Web Accessibility by accessiBe | 72 | 1 | 25 | 10k+ | Input is not sanitized | ||
| #1258 | Keyword Research Tool | 72 | 9 | 11 | 700 | Input is not validated | ||
| #1259 | Featured Image in RSS Feed by MailerLite | 72 | 12 | 7 | 1k+ | Output is not escaped | ||
| #1260 | Waymark | 72 | 16 | 32 | 900 | Missing direct file access protection | ||
| #1261 | OpenID Connect Generic Client | 73 | 9 | 59 | 10k+ | Non-prefixed hook name | ||
| #1262 | EmailKit – Email Customizer for WooCommerce & WP | 73 | 18 | 81 | 70k+ | slow db query meta query | ||
| #1263 | Theme Inspector | 73 | 23 | 7 | 400 | Output is not escaped | ||
| #1264 | ELEX WooCommerce USPS Shipping Method | 74 | 139 | 45 | 900 | Text Domain Mismatch | ||
| #1265 | Formidable Honeypot | 74 | 10 | 6 | 400 | Text Domain Mismatch | ||
| #1266 | Post My CF7 Form | 74 | 21 | 168 | 2k+ | Non-prefixed global variable | ||
| #1267 | WP API SwaggerUI | 74 | 16 | 14 | 2k+ | Missing direct file access protection | ||
| #1268 | chat-me-now | 75 | 15 | 5 | 4k+ | Output is not escaped | ||
| #1269 | Simple SMTP by Maileroo | 75 | 40 | 8 | 700 | Text Domain Mismatch | ||
| #1270 | wp-forecast | 75 | 263 | 117 | 5k+ | Missing Arg Domain | ||
| #1271 | Auction Nudge – Your eBay Listings | 76 | 18 | 6 | 1k+ | Missing direct file access protection | ||
| #1272 | Clear Cache Everywhere | 76 | 7 | 17 | 600 | Nonce verification recommended | ||
| #1273 | RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator | 77 | 37 | 282 | 40k+ | Non-prefixed global variable | ||
| #1274 | GDPR | 77 | 39 | 121 | 10k+ | Non-prefixed global variable | ||
| #1275 | Pushover Integration for WooCommerce | 77 | 107 | 7 | 800 | Text Domain Mismatch | ||
| #1276 | Tagembed Social Feeds Widget | 77 | 21 | 137 | 10k+ | Non-prefixed function | ||
| #1277 | Taggbox – Free Social Media Widgets, Review Badges & Shoppable UGC | 77 | 23 | 113 | 1k+ | Direct Query | ||
| #1278 | ELEX WooCommerce Address Validation & Google Address Autocomplete Plugin | 78 | 73 | 40 | 700 | Missing Arg Domain | ||
| #1279 | Ni WooCommerce Admin Order Columns | 79 | 15 | 4 | 600 | Output is not escaped | ||
| #1280 | Duo Universal | 80 | 6 | 25 | 2k+ | Nonce verification recommended | ||
| #1281 | SteadFast API | 80 | 2 | 23 | 8k+ | Non-prefixed global variable | ||
| #1282 | GoCardless for WooCommerce | 80 | 60 | 1k+ | Non-prefixed class | |||
| #1283 | Disable Gutenberg Blocks – Block Manager | 81 | 6 | 10 | 4k+ | trademarked term | ||
| #1284 | Hostinger Tools | 81 | 14 | 22 | 3m+ | wp function not compatible with requires wp | ||
| #1285 | Siteimprove | 81 | 6 | 23 | 800 | Nonce verification recommended | ||
| #1286 | Wp Tracking Codes | 81 | 7 | 12 | 900 | Nonce verification recommended | ||
| #1287 | Stop Emails | 82 | 9 | 3 | 5k+ | Missing direct file access protection | ||
| #1288 | Integration of Bitrix24 with Contact Form 7 | 83 | 14 | 40 | 600 | Non-prefixed function | ||
| #1289 | Zhanzhangb Indexing Submission for Baidu | 83 | 14 | 4 | 2k+ | Output is not escaped | ||
| #1290 | JWT Authentication for WP REST API | 84 | 27 | 41 | 60k+ | wp function not compatible with requires wp | ||
| #1291 | Auto Subpage Menu | 85 | 5 | 6 | 800 | Database parameter is not escaped | ||
| #1292 | Payment Integration Wompi | 85 | 44 | 11 | 1k+ | Missing Arg Domain | ||
| #1293 | All Currencies for WooCommerce | 85 | 17 | 3 | 1k+ | Missing Translators Comment | ||
| #1294 | Heroic Glossary – Block for building Glossaries, Dictionaries and more | 86 | 8 | 7 | 3k+ | Text Domain Mismatch | ||
| #1295 | Printus – Automatic Cloud Printing for WooCommerce | 86 | 28 | 20 | 800 | Missing Arg Domain | ||
| #1296 | WC MyParcel Belgium | 86 | 340 | 79 | 600 | Text Domain Mismatch | ||
| #1297 | PayPal Enterprise Payments (formerly Braintree) for WooCommerce | 86 | 3 | 33 | 10k+ | Direct Query | ||
| #1298 | Click To Tweet | 87 | 8 | 7 | 2k+ | trademarked term | ||
| #1299 | Entry Expiration for Gravity Forms | 87 | 8 | 2 | 1k+ | Missing direct file access protection | ||
| #1300 | Snitch | 87 | 5 | 19 | 900 | Nonce verification recommended |