Cache-Control

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<!doctype html>\n<meta charset=\"utf-8\">\n<title>Document moved</title>\n<p>Document has <a href=\"${location_attr}\">moved here</a>.</p>"'.

Sample message

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

Sample message

Processing form data without nonce verification.

Sample message

Detected usage of a non-sanitized input variable: $_POST[&#039;nonce&#039;]

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST[&#039;nonce&#039;]. Check that the array index exists before using it.

Sample message

$_POST[&#039;nonce&#039;] not unslashed before sanitization. Use wp_unslash() or similar

Sample message

rand() is discouraged. Use the far less predictable wp_rand() instead.

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

Sample message

Tested up to: 5.2 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.