WordPress.PHP.DevelopmentFunctions.prevent_path_disclosure_error_reporting

prevent path disclosure error reporting

Development or debugging behavior appears in code that may run in production.

medium weight

Why It Shows Up

The scan found logging, debugging, path disclosure, `phpinfo()`, error-reporting changes, or similar development-oriented functions.

Why It Matters

Debug output can leak paths, configuration, request data, stack details, or sensitive runtime information.

How to Fix

  • Remove temporary debugging calls before release.
  • If logging is required, guard it with `WP_DEBUG` or a plugin setting intended for administrators.
  • Never show debug details to unauthenticated visitors or normal front-end users.

Affected Plugins

RankPluginScoreErrorsWarningsInstallsAddedUpdatedTop Issue
#301Payment Gateway for Cpay with WooCommerce676726400wp function not compatible with requires wp
#302wp-Typography67913320k+Missing direct file access protection
#303News Magazine X Core6863305k+Missing Translators Comment
#304Gravity Forms Multi Currency74612400Output is not escaped
#305Appointment Bookings for Zoom GoogleMeet and more – Wappointment8122521k+Non-prefixed class
#306Real Thumbnail Generator: Efficient regeneration of thumbnails in all sizes855581k+Non-prefixed constant
#307Loop Post Navigation Links9175600Missing Arg Domain
#308Single Category Permalink93512400Non-prefixed global variable
#309Easy Theme and Plugin Upgrades94292070k+Discouraged PHP function