WordPress.Security.SafeRedirect.wp_redirect_wp_redirect
wp redirect wp redirect
Plugin Check reported a security-sensitive coding pattern that needs review.
Why It Shows Up
The finding came from a security-focused WordPress coding standard or Plugin Check rule.
Why It Matters
Security findings often involve trust boundaries: request input, browser output, redirects, database access, capabilities, or filesystem behavior.
How to Fix
- Identify the untrusted value or privileged action involved.
- Add validation, sanitization, escaping, nonce checks, capability checks, or prepared SQL as appropriate.
- Rerun Plugin Check after the code path is fixed.
Affected Plugins
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #1401 | FV Clone Screen Options | 89 | 16 | 3 | 1k+ | wp function not compatible with requires wp | ||
| #1402 | Superb Table (SEO Optimized Tables With Schema) | 89 | 44 | 12 | 2k+ | wp function not compatible with requires wp | ||
| #1403 | Animated Floating Chat Button | 90 | 1 | 4 | 2k+ | Nonce verification recommended | ||
| #1404 | ShareThis Dashboard for Google Analytics | 90 | 4 | 272 | 80k+ | Non-prefixed global variable | ||
| #1405 | LH Force Lowercase URLs | 90 | 4 | 3 | 2k+ | Input is not validated or sanitized | ||
| #1406 | Smooth Page Scroll Up/Down Buttons | 91 | 1 | 5 | 2k+ | Non-prefixed function | ||
| #1407 | Menu Cart for WooCommerce | 92 | 102 | 16 | 80k+ | Text Domain Mismatch | ||
| #1408 | WP Quick Post Duplicator | 92 | 3 | 10 | 3k+ | trademarked term | ||
| #1409 | EasyMega | 93 | 1 | 22 | 6k+ | Non-prefixed hook name | ||
| #1410 | WP Menu Cart | 93 | 11 | 15 | 7k+ | Non-prefixed hook name | ||
| #1411 | 404 Redirection | 94 | 4 | 2 | 7k+ | Missing direct file access protection | ||
| #1412 | 404 to Home | 94 | 6 | 1 | 1k+ | wp function not compatible with requires wp | ||
| #1413 | WC Minimum Order Amount | 94 | 7 | 6 | 3k+ | Text Domain Mismatch | ||
| #1414 | Disable Comments | 94 | 2 | 4 | 10k+ | trademarked term | ||
| #1415 | ContentProtector – password protect your page, post or text | 95 | 1 | 3 | 2k+ | Non-prefixed class | ||
| #1416 | Functionality | 95 | 6 | 2 | 1k+ | date date | ||
| #1417 | Redirect 404 Error Page to Homepage | 95 | 1 | 2 | 6k+ | outdated tested upto header | ||
| #1418 | WP Remove Category Base | 95 | 1 | 4 | 8k+ | trademarked term | ||
| #1419 | Customer Reviews Collector for WooCommerce | 96 | 5 | 1 | 5k+ | Missing direct file access protection | ||
| #1420 | WP Post Page Clone | 96 | 5 | 80k+ | trademarked term |
