WordPress.WP.AlternativeFunctions.parse_url_parse_url

parse url parse url

The plugin uses raw URL parsing where WordPress URL helpers may be safer or more compatible.

medium weight

Why It Shows Up

Plugin Check found `parse_url()` in plugin code.

Why It Matters

URL parsing is easy to get subtly wrong, especially with relative URLs, encoded values, and malformed input.

How to Fix

Use WordPress helpers such as `wp_parse_url()`, `esc_url_raw()`, `esc_url()`, and `wp_http_validate_url()` where they fit.
Validate schemes and hosts before using parsed URL parts.
Do not use parsed URLs to build redirects or requests without allowlisting.

Affected Plugins

Rank	Plugin	Score	Errors	Warnings	Installs	Updated	Top Issue
#301	WP Hotel Booking	24	1,250	1,555	7k+	27 days ago	Non Prefixed Variable Found
#302	WP RSS Aggregator – RSS Import, Feed to Post, Autoblogging, AI Content	24	1,775	393	40k+	4 days ago	Text Domain Mismatch
#303	SlimStat Analytics	24	1,169	737	70k+	1 month ago	Exception Not Escaped
#304	WP-Stateless – Google Cloud Storage	24	1,036	482	4k+	5 months ago	Non Singular String Literal Domain
#305	WP Travel – Ultimate Travel Booking System, Tour Management Engine	24	427	1,962	4k+	12 days ago	Non Prefixed Hookname Found
#306	WP Travel Engine – Tour Booking Plugin – Tour Operator Software	24	2,010	5,688	20k+	6 days ago	Non Prefixed Variable Found
#307	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	24	2,576	2,103	100k+	17 days ago	Output Not Escaped
#308	WP User Manager – User Profile Builder & Membership	24	787	539	10k+	22 days ago	Exception Not Escaped
#309	WPeMatico RSS Feed Fetcher	24	1,376	582	10k+	6 days ago	Output Not Escaped
#310	WPSpeed – WordPress Speed, Cache & Performance Optimization (Core Web Vitals, PageSpeed 100)	24	482	189	2k+	4 days ago	Output Not Escaped
#311	WpStream – Live Streaming, Video on Demand, Pay Per View	24	1,712	740	4k+	11 days ago	Text Domain Mismatch
#312	WP Travel Engine – Elementor Widgets \| Create Travel Booking Website Using WordPress and Elementor	24	5,907	2,136	10k+	13 days ago	Text Domain Mismatch
#313	Jetpack CRM – Clients, Leads, Invoices, Billing, Email Marketing, & Automation	24	1,211	3,152	30k+	24 days ago	Non Prefixed Variable Found
#314	Affiliates	25	689	1,483	2k+	2 months ago	Output Not Escaped
#315	All 404 Redirect to Homepage	25	140	301	200k+	3 months ago	date date
#316	Appointment Hour Booking – Booking Calendar	25	261	1,254	10k+	6 days ago	Non Prefixed Variable Found
#317	ATUM WooCommerce Inventory Management and Stock Tracking	25	2,638	1,304	10k+	1 month ago	Non Singular String Literal Domain
#318	bbp style pack	25	1,419	1,792	6k+	1 month ago	Output Not Escaped
#319	Beaver Builder Page Builder – Drag and Drop Website Builder	25	4,463	1,819	100k+	13 days ago	Text Domain Mismatch
#320	Breeze Cache	25	217	790	400k+	9 days ago	Non Prefixed Variable Found
#321	Broken Link Checker	25	727	600	500k+	29 days ago	Output Not Escaped
#322	CheckoutWC Lite	25	1,359	850	3k+	9 days ago	Text Domain Mismatch
#323	Admin Columns	25	613	995	100k+	23 days ago	Non Prefixed Namespace Found
#324	Colissimo shipping methods for WooCommerce	25	1,755	557	10k+	4 days ago	Text Domain Mismatch
#325	Contact Form Email	25	409	898	9k+	1 month ago	Non Prefixed Variable Found
#326	Coupon Creator	25	698	412	1k+	1 month ago	Output Not Escaped
#327	DecaLog	25	943	236	1k+	3 months ago	Exception Not Escaped
#328	Docket Cache – Object Cache Accelerator	25	333	481	20k+	19 days ago	Output Not Escaped
#329	Events Made Easy	25	506	6,296	1k+	today	Non Prefixed Function Found
#330	Photo Gallery by FooGallery : Responsive Image Gallery, Masonry Gallery & Carousel	25	876	1,798	100k+	1 month ago	Non Prefixed Variable Found
#331	GD Security Headers	25	407	521	1k+	1 month ago	Output Not Escaped
#332	Site Kit by Google – Analytics, Search Console, AdSense, Speed	25	1,304	242	5m+	6 days ago	missing direct file access protection
#333	Sitemap by BestWebSoft – WordPress XML Site Map Page Generator Plugin	25	608	207	20k+	1 month ago	Text Domain Mismatch
#334	Hydra Booking — Appointment Scheduling & Booking Calendar	25	238	707	2k+	13 days ago	Non Prefixed Variable Found
#335	Limit Login Attempts Security – Login Security, 2FA, Firewall, Brute Force Prevention	25	621	602	1m+	5 days ago	Unsafe Printing Function
#336	Live Composer – Free WordPress Website Builder	25	1,216	427	10k+	17 days ago	Output Not Escaped
#337	LWS Optimize – All-in-One Speed Booster & Cache Tools	25	430	764	20k+	6 days ago	Non Prefixed Variable Found
#338	Media Cleaner: Clean your WordPress!	25	151	391	90k+	22 days ago	Direct Query
#339	Create	25	1,558	767	6k+	2 days ago	Text Domain Mismatch
#340	MyFatoorah – WooCommerce	25	191	89	3k+	4 months ago	Output Not Escaped
#341	All-in-one Sticky Floating Contact Form, Call, Click to Chat, and 50+ Social Icon Tabs – My Sticky Elements	25	352	597	40k+	10 days ago	Non Prefixed Variable Found
#342	Nexter Extension – Security, Performance, Code Snippets & Site Toolkit	25	198	710	10k+	5 days ago	Recommended
#343	NotificationX – FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Announcement Banner & Floating Notification Bar	25	257	397	40k+	3 days ago	Non Prefixed Hookname Found
#344	PDF & Print by BestWebSoft – WordPress Posts and Pages PDF Generator Plugin	25	1,084	1,296	9k+	2 months ago	Non Prefixed Variable Found
#345	phpinfo() WP — Site Health, PHP Compatibility & Server Audit	25	276	704	3k+	6 days ago	Non Prefixed Variable Found
#346	Quttera ThreatSign – Web Malware Scanner for WordPress	25	334	471	10k+	3 days ago	Non Prefixed Variable Found
#347	reSmush.it : The original free image compressor and optimizer plugin	25	155	69	100k+	5 days ago	Output Not Escaped
#348	BerqWP – Automatic WordPress Website Speed Optimization	25	198	501	3k+	2 days ago	Non Prefixed Variable Found
#349	SEO Repair Kit – Meta Manager, Schema Manager, SEO Content Monitoring, GSC Integration, Keyword & Rank Tracking	25	196	902	2k+	1 month ago	Direct Query
#350	ShopMagic – email automation	25	228	145	10k+	6 days ago	Exception Not Escaped