Custom Sidebars – Dynamic Sidebar Classic Widget Area Manager

Flexible sidebars for custom classic widget configurations on any page or post. Create custom sidebars with ease!

v3.38WebFactoryUpdated 1 month agoAdded 16 years ago100k+ installs94% rating

classic widgets custom sidebar dynamic widgets sidebar widget

Score

Errors

307

Warnings

Change

Category Scores

Security0

Repo100

Performance100

Maintainability45

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

339 findings

Maintainability

236

15 issue groups

Security

103

6 issue groups

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$a".124

Category: Maintainability
Occurrences: 124
Severity: warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$a".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "cs_ajax_request".52

Category: Maintainability
Occurrences: 52
Severity: warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "cs_ajax_request".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound

WARNINGSecurityRequest data is not unslashed$_GET[$sticky_key] not unslashed before sanitization. Use wp_unslash() or similar32

Category: Security
Occurrences: 32
Severity: warning

Sample message

$_GET[$sticky_key] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;26

Category: Maintainability
Occurrences: 26
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.22

Category: Security
Occurrences: 22
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_FILES['data']['name']20

Category: Security
Occurrences: 20
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_FILES['data']['name']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.17

Category: Security
Occurrences: 17
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing

WARNINGMaintainabilityNon-prefixed constantGlobal constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "CSB_CSS_URL".13

Category: Maintainability
Occurrences: 13
Severity: warning

Sample message

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "CSB_CSS_URL".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedConstantFound

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_FILES['data']. Check that the array index exists before using it.10

Category: Security
Occurrences: 10
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_FILES['data']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

WARNINGMaintainabilityNon-prefixed functionFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_show_replaceable".5

Category: Maintainability
Occurrences: 5
Severity: warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_show_replaceable".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound

Show 11 more

WARNINGMaintainabilityerror log error log3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

error_log() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_error_log

WARNINGMaintainabilityDirect Query2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo Caching2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

ERRORSecuritySQL query is not prepared2

Category: Security
Occurrences: 2
Severity: error

Sample message

Use placeholders and $wpdb->prepare(); found $query

WordPress.DB.PreparedSQL.NotPrepared

WARNINGMaintainabilityerror log var export2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

var_export() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_var_export

ERRORMaintainabilityDeprecated parameter: get_terms parameter 22

Category: Maintainability
Occurrences: 2
Severity: error

Sample message

The parameter "array(\n\t\t\t\t'hide_empty' => false,\n\t\t\t\t'search' => $search,\n\t\t\t)" at position #2 of get_terms() has been deprecated since WordPress version 4.5.0. Instead do not pass the parameter.

WordPress.WP.DeprecatedParameters.Get_termsParam2Found

WARNINGMaintainabilityerror log debug backtrace1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

debug_backtrace() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_debug_backtrace

ERRORMaintainabilityfile system operations mkdir1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: mkdir().

WordPress.WP.AlternativeFunctions.file_system_operations_mkdir

WARNINGMaintainabilitymismatched plugin name1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Plugin name "Custom Sidebars - Dynamic Sidebar Classic Widget Area Manager" is different from the name declared in plugin header "Custom Sidebars".

mismatched_plugin_name Reference

WARNINGMaintainabilityupgrade notice limit1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

The upgrade notice for "0.7" exceeds the limit of 300 characters.

upgrade_notice_limit

ERRORMaintainabilitywp function not compatible with requires wp1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

Function "sanitize_textarea_field()" requires WordPress 4.7.0, but your plugin minimum supported version is WordPress 4.6.0.

wp_function_not_compatible_with_requires_wp Reference

Score History

First score snapshot

3 days ago

v3.38

Latest

Findings: 339
Errors: 32
Warnings: 307
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
3 days agoLatest	34	339	32	307	v3.38	2.0.0

Related Plugins

Classic Widgets

2m+ active installs

Newpost Catch

10k+ active installs

Sidebar Login

10k+ active installs

Taxonomy Dropdown Widget

2k+ active installs

Taxonomy List Widget

1k+ active installs

Classic Editor +

40k+ active installs