WordPress.WP.EnqueuedResourceParameters.NotInFooter
Not In Footer
A script or stylesheet is loaded without the expected WordPress enqueue metadata.
Why It Shows Up
The scan found missing versions, missing footer placement, or scripts/styles printed directly instead of being enqueued.
Why It Matters
Proper enqueueing lets WordPress manage dependencies, versions, placement, caching, and compatibility with other plugins.
How to Fix
- Register or enqueue assets with handles, dependencies, versions, and placement arguments.
- Use a file modification time or plugin version for local asset versions when appropriate.
- Avoid printing script or stylesheet tags directly in templates.
References
Affected Plugins
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #1801 | Advanced Custom Fields: NextGEN Gallery Field add-on | 37 | 131 | 20 | 400 | Output is not escaped | ||
| #1802 | PiWeb Advanced Flat rate / Conditional shipping for WooCommerce | 37 | 84 | 192 | 2k+ | wp function not compatible with requires wp | ||
| #1803 | All-in-one Chat Button by anychat.one | 37 | 119 | 69 | 900 | Text Domain Mismatch | ||
| #1804 | Anything Popup | 37 | 164 | 185 | 2k+ | Non-prefixed global variable | ||
| #1805 | Banhammer – Monitor Site Traffic, Block Bad Users and Bots | 37 | 104 | 174 | 1k+ | Output is not escaped | ||
| #1806 | Before After Image Comparison Slider for Elementor | 37 | 90 | 41 | 10k+ | Text Domain Mismatch | ||
| #1807 | Blimply | 37 | 172 | 43 | 700 | Text Domain Mismatch | ||
| #1808 | BuddyPress Members Only | 37 | 184 | 80 | 1k+ | Text Domain Mismatch | ||
| #1809 | bunny.net – WordPress CDN Plugin | 37 | 165 | 159 | 10k+ | Output is not escaped | ||
| #1810 | CDEKDelivery | 37 | 98 | 75 | 2k+ | Exception output is not escaped | ||
| #1811 | Checkout for PayPal | 37 | 134 | 67 | 600 | Unsafe printing function | ||
| #1812 | ClickCease Click Fraud Protection | 37 | 30 | 58 | 10k+ | Non-prefixed class | ||
| #1813 | CodePeople Post Map for Google Maps | 37 | 256 | 34 | 3k+ | Unsafe printing function | ||
| #1814 | Coming Soon & Maintenance Mode by Colorlib | 37 | 100 | 136 | 6k+ | Non-prefixed global variable | ||
| #1815 | PiWeb Conditional cart fee / Extra charge rule for WooCommerce | 37 | 164 | 214 | 2k+ | Text Domain Mismatch | ||
| #1816 | CookieAdmin – Cookie Consent Banner | 37 | 43 | 86 | 400k+ | Nonce verification recommended | ||
| #1817 | CorvusPay WooCommerce Payment Gateway | 37 | 29 | 141 | 1k+ | Missing nonce verification | ||
| #1818 | Crafty Social Buttons | 37 | 279 | 27 | 1k+ | Non Singular String Literal Domain | ||
| #1819 | CryptAPI Payment Gateway for WooCommerce | 37 | 187 | 29 | 400 | Text Domain Mismatch | ||
| #1820 | Simple Custom CSS and JS | 37 | 168 | 69 | 600k+ | Output is not escaped | ||
| #1821 | Donation Block For PayPal | 37 | 23 | 106 | 600 | Input is not validated | ||
| #1822 | DSGVO/GDPR Cookies, DSE, Impressum & Google Fonts Proxy | 37 | 391 | 25 | 700 | Text Domain Mismatch | ||
| #1823 | Easy Testimonial Slider and Form | 37 | 14 | 144 | 700 | Request data is not unslashed | ||
| #1824 | WP eBay Product Feeds | 37 | 136 | 31 | 800 | Output is not escaped | ||
| #1825 | Facturare WooCommerce | 37 | 158 | 106 | 3k+ | Text Domain Mismatch | ||
| #1826 | Favorites | 37 | 204 | 121 | 10k+ | Unsafe printing function | ||
| #1827 | GoPay for WooCommerce | 37 | 66 | 103 | 1k+ | Non-prefixed global variable | ||
| #1828 | HandL UTM Grabber / Tracker | 37 | 27 | 141 | 10k+ | Missing nonce verification | ||
| #1829 | Hash Elements | 37 | 147 | 92 | 5k+ | Output is not escaped | ||
| #1830 | HT Builder – WordPress Theme Builder for Elementor | 37 | 142 | 41 | 900 | Output is not escaped | ||
| #1831 | HT Menu – WordPress Mega Menu Builder for Elementor | 37 | 300 | 60 | 3k+ | Text Domain Mismatch | ||
| #1832 | .htaccess Site Access Control | 37 | 54 | 67 | 800 | Input is not sanitized | ||
| #1833 | Humans TXT | 37 | 159 | 86 | 400 | Output is not escaped | ||
| #1834 | Image Optimizer by 10web – Image Optimizer and Compression plugin | 37 | 244 | 45 | 3k+ | Text Domain Mismatch | ||
| #1835 | JVM Rich Text Icons | 37 | 87 | 34 | 3k+ | Output is not escaped | ||
| #1836 | Language Switcher | 37 | 81 | 105 | 1k+ | Missing Translators Comment | ||
| #1837 | LH Archived Post Status | 37 | 150 | 64 | 3k+ | Text Domain Mismatch | ||
| #1838 | LiveAgent – Omnichannel Help Desk & Live Chat Software | 37 | 125 | 142 | 400 | Non Singular String Literal Domain | ||
| #1839 | MailingBoss WP Plugin | 37 | 108 | 30 | 600 | Output is not escaped | ||
| #1840 | Media Sweep – WordPress Media Cleaner | 37 | 54 | 134 | 1k+ | Interpolated SQL is not prepared | ||
| #1841 | Max Mega Menu | 37 | 249 | 174 | 300k+ | Output is not escaped | ||
| #1842 | My Post Order | 37 | 100 | 114 | 400 | Output is not escaped | ||
| #1843 | NextGEN Scroll Gallery | 37 | 33 | 28 | 1k+ | Output is not escaped | ||
| #1844 | Ninja Van (MY) | 37 | 21 | 258 | 1k+ | Non-prefixed global variable | ||
| #1845 | Optin Forms – Simple List Building Plugin for WordPress | 37 | 647 | 22 | 3k+ | Output is not escaped | ||
| #1846 | OSM – OpenStreetMap | 37 | 130 | 64 | 10k+ | Output is not escaped | ||
| #1847 | GoHero Store Customizer for WooCommerce | 37 | 75 | 53 | 600 | Unsafe printing function | ||
| #1848 | Phoenix Media Rename | 37 | 175 | 104 | 50k+ | Output is not escaped | ||
| #1849 | Post Terms Order – per Post based | 37 | 70 | 36 | 2k+ | Output is not escaped | ||
| #1850 | Product Image Hover Effects WOOC – WPSHARE247 | 37 | 161 | 94 | 800 | Output is not escaped |
