Embed any external content on a Page, Post, or Custom Post Type without the need to use complicated domain forwarding or domain masks.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Maintainability
350
5 issue groups
Security
48
2 issue groups
Supply Chain
2
1 issue group
WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$active_tab".345
- Category
- Maintainability
- Occurrences
- 345
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$active_tab".
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$attr'.47
- Category
- Security
- Occurrences
- 47
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$attr'.
WARNINGMaintainabilityslow db query meta queryDetected usage of meta_query, possible slow query.2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
Detected usage of meta_query, possible slow query.
ERRORSupply ChainHidden files includedHidden files are not permitted.2
- Category
- Supply Chain
- Occurrences
- 2
- Severity
- error
Sample message
Hidden files are not permitted.
WARNINGMaintainabilityNon-prefixed classClasses declared by a theme/plugin should start with the theme/plugin prefix. Found: "ContentMask".1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "ContentMask".
WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "wp_title".1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "wp_title".
WARNINGSecuritywp redirect wp redirectwp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.1
- Category
- Security
- Occurrences
- 1
- Severity
- warning
Sample message
wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.
ERRORMaintainabilitywp function not compatible with requires wpFunction "wp_enqueue_code_editor()" requires WordPress 4.9.0, but your plugin minimum supported version is WordPress 4.7.0.1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Function "wp_enqueue_code_editor()" requires WordPress 4.9.0, but your plugin minimum supported version is WordPress 4.7.0.
External Connections
Potential connections found in static code analysis.
Outbound calls
17
External assets
0
Incoming endpoints
1
Notable Domains
Platform / Reference Domains
External Asset Domains
No external asset domains detected.
Incoming Endpoints
No public endpoints detected.
Admin AJAX endpoints1
wp_ajax
Score History
2 score snapshots
v1.8.5.5
35
Latest
- Findings
- 400
- Errors
- 50
- Warnings
- 350
- Check
- 2.0.0
v1.8.5.4
35
Score
- Findings
- 400
- Errors
- 50
- Warnings
- 350
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 35 | 400 | 50 | 350 | v1.8.5.5 | 2.0.0 |
| 35 | 400 | 50 | 350 | v1.8.5.4 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.