WordPress.WP.AlternativeFunctions.rand_rand

rand rand

The plugin uses a random function that may not be appropriate for the task.

medium weight

Why It Shows Up

The scan found functions such as `rand()`, `mt_rand()`, `srand()`, or `mt_srand()`.

Why It Matters

General random functions are not suitable for security-sensitive tokens and manual seeding can reduce randomness.

How to Fix

Use `wp_rand()` for ordinary WordPress randomness.
Use PHP cryptographic randomness for security-sensitive tokens.
Avoid manual random seeding unless there is a narrow, documented reason.

Affected Plugins

Rank	Plugin	Score	Errors	Warnings	Installs	Updated	Top Issue
#51	Wise Chat	21	470	506	5k+	4 months ago	Output Not Escaped
#52	Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools	21	786	3,395	30k+	5 days ago	Non Prefixed Variable Found
#53	Wordfence Security – Firewall, Malware Scan, and Login Security	21	1,592	2,973	5m+	1 month ago	Output Not Escaped
#54	WP-Lister Lite for eBay	21	6,697	5,129	2k+	19 days ago	Output Not Escaped
#55	WP phpMyAdmin	21	4,528	6,435	50k+	8 months ago	Missing Arg Domain
#56	Premium Packages – Sell Digital Products Securely	21	2,765	2,444	3k+	6 months ago	Output Not Escaped
#57	WPScan – WordPress Security Scanner	21	527	265	8k+	5 months ago	Text Domain Mismatch
#58	Frontend Admin by DynamiApps	22	5,922	3,208	10k+	5 days ago	Text Domain Mismatch
#59	Booking for Appointments and Events Calendar – Amelia	22	1,489	480	90k+	4 days ago	Exception Not Escaped
#60	Borderless – Addons and Templates for Elementor	22	438	1,388	5k+	7 months ago	Non Prefixed Variable Found
#61	BuddyPress	22	583	9,008	100k+	9 months ago	Non Prefixed Function Found
#62	Captcha by BestWebSoft – Advanced Spam Protection, Math & OCR-Friendly Captcha for Site Forms	22	493	295	10k+	3 months ago	Text Domain Mismatch
#63	Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer	22	2,858	1,270	50k+	2 months ago	Text Domain Mismatch
#64	RegistrationMagic – User Registration Forms Plugin	22	3,654	5,062	8k+	2 days ago	Non Prefixed Variable Found
#65	WP Customer Area	22	3,308	941	10k+	2 months ago	Text Domain Mismatch
#66	Directorist: AI-Powered Business Directory, Listings & Classified Ads	22	443	2,129	20k+	13 days ago	Non Prefixed Variable Found
#67	Dynamic QR Code – generator	22	238	208	6k+	1 year ago	missing direct file access protection
#68	E2Pdf – Export Pdf Tool for WordPress	22	1,075	836	10k+	6 days ago	Unsafe Printing Function
#69	Events Manager – Calendar, Bookings, Tickets, and more!	22	4,722	5,621	70k+	3 days ago	Output Not Escaped
#70	Five Star Restaurant Menu and Food Ordering	22	752	609	5k+	19 days ago	Output Not Escaped
#71	GeoDirectory – WP Business Directory Plugin and Classified Listings Directory	22	4,462	3,972	10k+	12 days ago	Output Not Escaped
#72	Csomagpontok és Címkék WooCommerce-hez	22	2,001	769	7k+	19 days ago	Text Domain Mismatch
#73	IMPress for IDX Broker	22	1,085	636	7k+	2 months ago	Text Domain Mismatch
#74	Insert or Embed Articulate Content into WordPress	22	659	1,437	2k+	11 months ago	Non Prefixed Variable Found
#75	Számlázz.hu integráció WooCommerce-hez	22	1,169	460	7k+	22 days ago	Text Domain Mismatch
#76	InfiniteWP Client	22	2,286	1,812	200k+	4 months ago	Exception Not Escaped
#77	LearnPress – WordPress LMS Plugin for Create and Sell Online Courses	22	2,361	3,384	70k+	5 days ago	Non Prefixed Variable Found
#78	Newsletters	22	2,968	2,248	2k+	3 days ago	Text Domain Mismatch
#79	PAYCOMET for WooCommerce	22	1,206	423	2k+	5 days ago	Text Domain Mismatch
#80	Smart Popup by Supsystic	22	3,172	503	10k+	22 days ago	Non Singular String Literal Domain
#81	Post SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App	22	1,581	2,326	300k+	19 days ago	Non Prefixed Variable Found
#82	Prime Mover – Migrate WordPress Website & Backups	22	1,326	1,600	10k+	16 days ago	Non Prefixed Variable Found
#83	Salon Booking System – Free Version	22	650	619	3k+	9 days ago	missing direct file access protection
#84	ShortPixel Image Optimizer – Optimize Images, Convert WebP & AVIF	22	1,044	799	300k+	18 days ago	Non Prefixed Variable Found
#85	Simple Job Board	22	634	1,355	10k+	18 days ago	Non Prefixed Variable Found
#86	Slim Jetpack	22	2,586	1,947	2k+	9 years ago	Text Domain Mismatch
#87	NextScripts: Social Networks Auto-Poster	22	2,408	1,133	30k+	4 months ago	Output Not Escaped
#88	SportsPress – Sports Club & League Manager	22	460	2,242	10k+	4 months ago	Non Prefixed Variable Found
#89	Stylish Price List – Price Table Builder & QR Code Restaurant Menu	22	674	678	3k+	7 days ago	Output Not Escaped
#90	Tablesome Table – Contact Form DB – WPForms, CF7, Gravity, Forminator, Fluent	22	225	519	8k+	2 months ago	error log error log
#91	Search & Replace Everything – Quick and Easy Way to Find and Replace Text, Links	22	1,044	1,797	20k+	26 days ago	Non Prefixed Variable Found
#92	URL Shortify – Simple and Easy URL Shortener	22	1,520	2,689	10k+	18 days ago	Non Prefixed Variable Found
#93	Welcart e-Commerce	22	10,377	10,896	10k+	19 days ago	Text Domain Mismatch
#94	WCFM Marketplace – Multivendor Marketplace for WooCommerce	22	1,937	1,969	10k+	1 month ago	Non Prefixed Variable Found
#95	WCFM Membership – WooCommerce Memberships for Multivendor Marketplace	22	559	675	10k+	2 months ago	Non Prefixed Variable Found
#96	WooCommerce	22	1,355	6,129	7m+	26 days ago	Non Prefixed Variable Found
#97	Simple Shopping Cart	22	796	536	10k+	1 month ago	Unsafe Printing Function
#98	Asset CleanUp: Page Speed Booster	22	2,030	2,485	100k+	2 months ago	Non Prefixed Variable Found
#99	File Manager	22	740	520	1m+	2 months ago	Unsafe Printing Function
#100	WP Fusion Lite – Marketing Automation and CRM Integration for WordPress	22	276	683	5k+	2 months ago	Recommended