Admin Custom Font

Admin Custom Font plugin allows you to replace default/factory font in WordPress Admin Dashboard with hundreds of different Google Fonts.

v2.5.2Darko A7Updated 3 years agoAdded 10 years ago1k+ installs90% rating

admin custom font google opensans

Score

Errors

Warnings

Change

Category Scores

Security0

Repo83

Performance100

Maintainability83

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

59 findings

Security

6 issue groups

Maintainability

6 issue groups

Repo Compliance

4 issue groups

I18n

1 issue group

ERRORSecurityUnsafe printing functionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.13

Category: Security
Occurrences: 13
Severity: error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunction Reference

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$GoogleFont'.8

Category: Security
Occurrences: 8
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$GoogleFont'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST['admin_custom_font_family_option']6

Category: Security
Occurrences: 6
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_POST['admin_custom_font_family_option']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityRequest data is not unslashed$_POST['admin_custom_font_family_option'] not unslashed before sanitization. Use wp_unslash() or similar6

Category: Security
Occurrences: 6
Severity: warning

Sample message

$_POST['admin_custom_font_family_option'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.5

Category: Security
Occurrences: 5
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing

WARNINGMaintainabilityNo PHP code foundNo PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.4

Category: Maintainability
Occurrences: 4
Severity: warning

Sample message

No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.

Internal.NoCodeFound

ERRORMaintainabilityNo Explicit VersionVersion parameter is not explicitly set or has been set to an equivalent of "false" for wp_register_style; This means that the WordPress core version will be used which is not recommended for plugin or theme development.3

Category: Maintainability
Occurrences: 3
Severity: error

Sample message

Version parameter is not explicitly set or has been set to an equivalent of "false" for wp_register_style; This means that the WordPress core version will be used which is not recommended for plugin or theme development.

WordPress.WP.EnqueuedResourceParameters.NoExplicitVersion

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_POST['admin_custom_font_nonce_input_txt']. Check that the array index exists before using it.2

Category: Security
Occurrences: 2
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['admin_custom_font_nonce_input_txt']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

ERRORMaintainabilityfile system operations fcloseFile operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().2

Category: Maintainability
Occurrences: 2
Severity: error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().

WordPress.WP.AlternativeFunctions.file_system_operations_fclose

ERRORMaintainabilityfile system operations fopenFile operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().2

Category: Maintainability
Occurrences: 2
Severity: error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().

WordPress.WP.AlternativeFunctions.file_system_operations_fopen

Show 7 more

ERRORMaintainabilityfile system operations touch2

Category: Maintainability
Occurrences: 2
Severity: error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: touch().

WordPress.WP.AlternativeFunctions.file_system_operations_touch

ERRORMaintainabilityfile system operations fwrite1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().

WordPress.WP.AlternativeFunctions.file_system_operations_fwrite

ERRORI18nMissing Arg Domain1

Category: I18n
Occurrences: 1
Severity: error

Sample message

Missing $domain parameter in function call to __().

WordPress.WP.I18n.MissingArgDomain Reference

ERRORRepo Complianceoutdated tested upto header1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Tested up to: 6.2 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_header Reference

ERRORRepo Complianceplugin header no license1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.

plugin_header_no_license Reference

WARNINGRepo Compliancereadme parser warnings ignored tags1

Category: Repo Compliance
Occurrences: 1
Severity: warning

Sample message

One or more tags were ignored. The following tags are not permitted: "plugin", "wordpress"

readme_parser_warnings_ignored_tags

WARNINGRepo Compliancereadme parser warnings too many tags1

Category: Repo Compliance
Occurrences: 1
Severity: warning

Sample message

One or more tags were ignored. Please limit your plugin to 5 tags.

readme_parser_warnings_too_many_tags

External Connections

Potential connections found in static code analysis.

3 domains

Outbound calls

External assets

Incoming endpoints

Notable Domains

tehnoblog.org2 · outbound

fonts.googleapis.com1 · outbound

Platform / Reference Domains

wordpress.org1 · platform/reference

External Asset Domains

No external asset domains detected.

Incoming Endpoints

No public endpoints detected.

Score History

First score snapshot

2 days ago

v2.5.2

Latest

Findings: 59
Errors: 34
Warnings: 25
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
2 days agoLatest	39	59	34	25	v2.5.2	2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

31 nodes

Loading map

PluginAuthorCategoryIssueDomainRelated

Relationship links

Issue

Domain

tehnoblog.org2 signals fonts.googleapis.com1 signal

Related Plugins

Default Admin Color Scheme

800 active installs

100

Magic robots.txt

1k+ active installs

100

PufferDesk

0 active installs

100

Redux Framework

900k+ active installs

100

Simply Show Hooks

2k+ active installs

100

Add Dashboard Columns

400 active installs