badly_named_files
badly named files
Plugin Check reported a maintainability issue that can make the plugin harder to review, run, or update.
Why It Shows Up
The finding matches a WordPress coding-standard or Plugin Check rule for code clarity, compatibility, packaging, or API usage.
Why It Matters
Maintainability findings reduce confidence that the plugin will behave consistently across hosts, WordPress versions, and other plugins.
How to Fix
- Find the exact file and line in the raw scan output.
- Prefer WordPress APIs and standard coding patterns over custom or legacy behavior.
- If the warning is from bundled third-party code, document that separately and avoid modifying vendor files unless necessary.
References
Affected Plugins
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #451 | If-So Geolocation | 36 | 50 | 57 | 1k+ | Non-prefixed global variable | ||
| #452 | News Manager | 36 | 134 | 57 | 700 | Output is not escaped | ||
| #453 | Qubely – Advanced Gutenberg Blocks | 36 | 39 | 78 | 8k+ | Request data is not unslashed | ||
| #454 | Direct Checkout – Quick View – Buy Now For WooCommerce | 36 | 90 | 112 | 2k+ | Missing nonce verification | ||
| #455 | Better Find and Replace – AI-Powered Suggestions | 36 | 67 | 129 | 40k+ | Missing direct file access protection | ||
| #456 | ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution | 36 | 63 | 667 | 100k+ | Non-prefixed global variable | ||
| #457 | Uji Countdown | 36 | 284 | 98 | 4k+ | Text Domain Mismatch | ||
| #458 | When Last Login | 36 | 52 | 123 | 50k+ | Non-prefixed global variable | ||
| #459 | WP Responsive Menu | 36 | 296 | 144 | 30k+ | Text Domain Mismatch | ||
| #460 | Yandex.Metrica | 36 | 76 | 30 | 60k+ | Output is not escaped | ||
| #461 | Advanced Accordion Gutenberg Block – Create Beautiful FAQs, Content Accordions & Interactive Tabs | 37 | 40 | 36 | 10k+ | Missing direct file access protection | ||
| #462 | Antom Payments | 37 | 60 | 68 | 800 | badly named files | ||
| #463 | Async JavaScript | 37 | 357 | 79 | 70k+ | Unsafe printing function | ||
| #464 | Cache Warmer | 37 | 32 | 220 | 1k+ | Interpolated SQL is not prepared | ||
| #465 | Call Now Button – The #1 Click to Call Button for WordPress | 37 | 1,273 | 5 | 200k+ | Exception output is not escaped | ||
| #466 | Direct Payments for WooCommerce – Bank Transfer, Mobile Money, Crypto and Peer-to-Peer (P2P) Payments | 37 | 103 | 977 | 800 | Non-prefixed global variable | ||
| #467 | Donation Block For PayPal | 37 | 23 | 106 | 600 | Input is not validated | ||
| #468 | Easy Testimonial Slider and Form | 37 | 14 | 144 | 700 | Request data is not unslashed | ||
| #469 | GoCache | 37 | 273 | 43 | 900 | Non Singular String Literal Domain | ||
| #470 | Post Terms Order – per Post based | 37 | 70 | 36 | 2k+ | Output is not escaped | ||
| #471 | Quickpay for WooCommerce | 37 | 66 | 56 | 4k+ | Nonce verification recommended | ||
| #472 | Hustle – Email Marketing, Lead Generation, Optins, Popups | 37 | 4,874 | 5,942 | 90k+ | Non-prefixed global variable | ||
| #473 | FundEngine – Donation and Crowdfunding Platform | 37 | 90 | 9 | 1k+ | Exception output is not escaped | ||
| #474 | Zoho Marketing Automation | 37 | 24 | 194 | 1k+ | Non-prefixed global variable | ||
| #475 | Ashe Extra | 38 | 109 | 54 | 3k+ | Text Domain Mismatch | ||
| #476 | Country Code Selector | 38 | 91 | 20 | 1k+ | Unsafe printing function | ||
| #477 | Export User Data | 38 | 187 | 62 | 6k+ | Text Domain Mismatch | ||
| #478 | Goal Tracker – Custom Event Tracking for GA4 | 38 | 541 | 25 | 2k+ | Output is not escaped | ||
| #479 | CAOS | Host Google Analytics Locally | 38 | 124 | 44 | 10k+ | Output is not escaped | ||
| #480 | Jupiter X Core | 38 | 71 | 767 | 80k+ | Non-prefixed global variable | ||
| #481 | MimeTypes Link Icons | 38 | 53 | 34 | 8k+ | Output is not escaped | ||
| #482 | MisterPlan – Booking Engines | 38 | 73 | 138 | 600 | Nonce verification recommended | ||
| #483 | Polaroid Gallery | 38 | 105 | 20 | 1k+ | Unsafe printing function | ||
| #484 | Restrict Widgets | 38 | 135 | 40 | 4k+ | Non Singular String Literal Domain | ||
| #485 | SOGO Accessibility | 38 | 147 | 40 | 5k+ | Non Singular String Literal Domain | ||
| #486 | Sync Post With Other Site | 38 | 179 | 24 | 3k+ | Non Singular String Literal Domain | ||
| #487 | Photo Reviews for WooCommerce | 38 | 26 | 222 | 10k+ | Request data is not unslashed | ||
| #488 | mb.miniAudioPlayer – an HTML5 audio player for your mp3 files | 38 | 204 | 6 | 4k+ | Unsafe printing function | ||
| #489 | Real-Time Post Statistics for WordPress | 38 | 63 | 68 | 2k+ | SQL query is not prepared | ||
| #490 | mb.YTPlayer for background videos | 38 | 80 | 29 | 1k+ | Unsafe printing function | ||
| #491 | Zoho Campaigns | 38 | 3 | 129 | 3k+ | Non-prefixed global variable | ||
| #492 | Better User Search | 39 | 24 | 44 | 700 | SQL query is not prepared | ||
| #493 | Country & Phone Field Contact Form 7 | 39 | 117 | 34 | 40k+ | Text Domain Mismatch | ||
| #494 | GDPRess | Eliminate external requests to increase GDPR compliance | 39 | 60 | 26 | 1k+ | Output is not escaped | ||
| #495 | Image Watermark WP | 39 | 88 | 82 | 600 | Output is not escaped | ||
| #496 | Quform Mailchimp | 39 | 65 | 147 | 800 | Nonce verification recommended | ||
| #497 | Quform Zapier | 39 | 60 | 123 | 1k+ | Nonce verification recommended | ||
| #498 | Classified Ads | 40 | 136 | 38 | 1k+ | Text Domain Mismatch | ||
| #499 | Manual Related Posts | 40 | 51 | 32 | 1k+ | Output is not escaped | ||
| #500 | LazyLoad Plugin – Lazy Load Images, Videos, and Iframes | 40 | 31 | 17 | 100k+ | Output is not escaped |
