The easiest way to migrate your site to Pantheon
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Maintainability
21
9 issue groups
Security
17
6 issue groups
I18n
3
2 issue groups
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$chunk'.7
- Category
- Security
- Occurrences
- 7
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$chunk'.
WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().5
- Category
- Maintainability
- Occurrences
- 5
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
WARNINGSecurityDatabase parameter is not escapedUnescaped parameter $query used in $wpdb->get_col()\n$query used without escaping.4
- Category
- Security
- Occurrences
- 4
- Severity
- warning
Sample message
Unescaped parameter $query used in $wpdb->get_col()\n$query used without escaping.
ERRORMaintainabilitywp function not compatible with requires wpFunction "get_main_site_id()" requires WordPress 4.9.0, but your plugin minimum supported version is WordPress 4.0.0.3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
Function "get_main_site_id()" requires WordPress 4.9.0, but your plugin minimum supported version is WordPress 4.0.0.
WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.2
- Category
- Security
- Occurrences
- 2
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_GET['bv_deactivation_assets']2
- Category
- Security
- Occurrences
- 2
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_GET['bv_deactivation_assets']
ERRORI18nMissing Arg DomainMissing $domain parameter in function call to __().2
- Category
- I18n
- Occurrences
- 2
- Severity
- error
Sample message
Missing $domain parameter in function call to __().
ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
ERRORMaintainabilityForbidden PHP function foundThe use of function move_uploaded_file() is forbidden1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
The use of function move_uploaded_file() is forbidden
Show 7 moreShow less
WARNINGMaintainabilityDiscouraged PHP function1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
The use of function ini_set() is discouraged
WARNINGMaintainabilityprevent path disclosure phpinfo1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
phpinfo() can lead to full path disclosure.
WARNINGSecuritywp redirect wp redirect1
- Category
- Security
- Occurrences
- 1
- Severity
- warning
Sample message
wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.
WARNINGSecurityInput is not validated1
- Category
- Security
- Occurrences
- 1
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_SERVER["SERVER_ADDR"]. Check that the array index exists before using it.
WARNINGMaintainabilityMissing Version1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Resource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.
WARNINGI18nLow Level Translation Function1
- Category
- I18n
- Occurrences
- 1
- Severity
- warning
Sample message
Use of the "translate()" function is reserved for low-level API usage.
WARNINGMaintainabilitymismatched plugin name1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Plugin name "Pantheon Migrations" is different from the name declared in plugin header "Pantheon Migration".
External Connections
Potential connections found in static code analysis.
Outbound calls
9
External assets
0
Incoming endpoints
2
Notable Domains
Platform / Reference Domains
External Asset Domains
No external asset domains detected.
Incoming Endpoints
wp_ajax
Admin AJAX endpoints1
wp_ajax
Score History
First score snapshot
v5.88
57
Latest
- Findings
- 41
- Errors
- 15
- Warnings
- 26
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 57 | 41 | 15 | 26 | v5.88 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.
Relationship links
Author
Issue
Domain
Related
Author
Issue
Domain
Related
Related Plugins
600 active installs
2k+ active installs
400 active installs
10k+ active installs
1k+ active installs
80k+ active installs