Anything Popup

This is a simple plugin to display the entered content in to unblockable popup window. popup will open by clicking the text or image button.

v7.3gopiplus@hotmail.comUpdated 4 years agoAdded 14 years ago2k+ installs84% rating

contact popup

Score

164

Errors

185

Warnings

Change

Category Scores

Security0

Repo94

Performance100

Maintainability62

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

349 findings

Security

191

9 issue groups

Maintainability

139

10 issue groups

I18n

2 issue groups

Repo Compliance

1 issue group

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$data".99

Category: Maintainability
Occurrences: 99
Severity: warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$data".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

ERRORSecurityUnsafe printing functionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.76

Category: Security
Occurrences: 76
Severity: error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunction Reference

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$after_widget'.40

Category: Security
Occurrences: 40
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$after_widget'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGSecurityRequest data is not unslashed$_GET['ac'] not unslashed before sanitization. Use wp_unslash() or similar27

Category: Security
Occurrences: 27
Severity: warning

Sample message

$_GET['ac'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

ERRORSecuritySQL query is not preparedUse placeholders and $wpdb->prepare(); found $sSql17

Category: Security
Occurrences: 17
Severity: error

Sample message

Use placeholders and $wpdb->prepare(); found $sSql

WordPress.DB.PreparedSQL.NotPrepared

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.12

Category: Maintainability
Occurrences: 12
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().12

Category: Maintainability
Occurrences: 12
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_GET['ac']12

Category: Security
Occurrences: 12
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_GET['ac']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

ERRORI18nText Domain MismatchMismatched text domain. Expected 'anything-popup' but got 'anything-popup-select'.9

Category: I18n
Occurrences: 9
Severity: error

Sample message

Mismatched text domain. Expected 'anything-popup' but got 'anything-popup-select'.

WordPress.WP.I18n.TextDomainMismatch Reference

ERRORI18nToo Many Function ArgsToo many parameters passed to function "__()". Expected: 2 parameters, received: 39

Category: I18n
Occurrences: 9
Severity: error

Sample message

Too many parameters passed to function "__()". Expected: 2 parameters, received: 3

WordPress.WP.I18n.TooManyFunctionArgs Reference

Show 12 more

WARNINGSecurityInput is not validated8

Category: Security
Occurrences: 8
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['pop_id']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

ERRORSecurityDatabase parameter is not escaped5

Category: Security
Occurrences: 5
Severity: error

Sample message

Unescaped parameter $sSql used in $wpdb->get_results()\n$sSql assigned unsafely at line 58.

PluginCheck.Security.DirectDB.UnescapedDBParameter

WARNINGMaintainabilityNon-prefixed constant5

Category: Maintainability
Occurrences: 5
Severity: warning

Sample message

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "ANYTHGPOPUP_ADMIN_URL".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedConstantFound

WARNINGSecurityNonce verification recommended4

Category: Security
Occurrences: 4
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

ERRORMaintainabilityMissing direct file access protection4

Category: Maintainability
Occurrences: 4
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

WARNINGMaintainabilitySchema Change2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

Attempting a database schema change is discouraged.

WordPress.DB.DirectDatabaseQuery.SchemaChange

WARNINGSecurityMissing nonce verification2

Category: Security
Occurrences: 2
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing

ERRORMaintainabilityNon Enqueued Script2

Category: Maintainability
Occurrences: 2
Severity: error

Sample message

Scripts must be registered/enqueued via wp_enqueue_script()

WordPress.WP.EnqueuedResources.NonEnqueuedScript

WARNINGMaintainabilityMissing Version1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.

WordPress.WP.EnqueuedResourceParameters.MissingVersion

ERRORMaintainabilityNo Explicit Version1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

Version parameter is not explicitly set or has been set to an equivalent of "false" for wp_register_script; This means that the WordPress core version will be used which is not recommended for plugin or theme development.

WordPress.WP.EnqueuedResourceParameters.NoExplicitVersion

WARNINGMaintainabilityNot In Footer1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

WordPress.WP.EnqueuedResourceParameters.NotInFooter

ERRORRepo Complianceoutdated tested upto header1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Tested up to: 6.1 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_header Reference

Score History

First score snapshot

yesterday

v7.3

Latest

Findings: 349
Errors: 164
Warnings: 185
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
yesterdayLatest	37	349	164	185	v7.3	2.0.0

3k+ active installs

100

Contact Form Query

1k+ active installs

100

Advanced Popups

60k+ active installs

Promolayer – Popup Builder & Abandonment Preventer

1k+ active installs

Very Simple Google Maps

3k+ active installs

Alligator Popup

2k+ active installs

Anything Popup

Category Scores

Issues to Review

Score History

Related Plugins