WebDefender Security – Protection & AntiSpam

PRO Security – Antivirus Scanner, 2-Layer Protection Hide Security, Brute Force Security & Antispam, Security Website and Security Hardening.

v5.0.2.1CobWeb Security Ltd.Updated Added 1k+ installs80% rating
70
Score
176
Errors
61
Warnings
+0
Change

Category Scores

Security64
Repo94
Performance100
Maintainability55

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

237 findings

Maintainability

215

7 issue groups

Security

21

2 issue groups

Repo Compliance

1

1 issue group

ERRORMaintainabilitywp function not compatible with requires wpFunction "get_current_screen()" requires WordPress 3.1.0, but your plugin minimum supported version is WordPress 2.8.0.171
Category
Maintainability
Occurrences
171
Severity
error

Sample message

Function "get_current_screen()" requires WordPress 3.1.0, but your plugin minimum supported version is WordPress 2.8.0.

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$resultdir".22
Category
Maintainability
Occurrences
22
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$resultdir".

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.18
Category
Security
Occurrences
18
Severity
warning

Sample message

Processing form data without nonce verification.

WARNINGMaintainabilityNon-prefixed constantGlobal constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "RESULT_PHP_INFO".14
Category
Maintainability
Occurrences
14
Severity
warning

Sample message

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "RESULT_PHP_INFO".

ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;4
Category
Maintainability
Occurrences
4
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.3
Category
Security
Occurrences
3
Severity
warning

Sample message

Processing form data without nonce verification.

WARNINGMaintainabilityNon-prefixed global variableGlobal constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "$cwis_wd_constant".2
Category
Maintainability
Occurrences
2
Severity
warning

Sample message

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "$cwis_wd_constant".

WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "wp_login".1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "wp_login".

WARNINGMaintainabilityprevent path disclosure phpinfophpinfo() can lead to full path disclosure.1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

phpinfo() can lead to full path disclosure.

ERRORRepo Complianceoutdated tested upto headerTested up to: 6.9 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.1
Category
Repo Compliance
Occurrences
1
Severity
error

Sample message

Tested up to: 6.9 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

External Connections

Potential connections found in static code analysis.

44 domains

Outbound calls

294

External assets

0

Incoming endpoints

6

Notable Domains

slimframework.com75 · outbound
tools.ietf.org35 · outbound
cobweb-security.com14 · outbound
php.net14 · outbound
apache.org4 · outbound
exploit-db.com3 · outbound

Platform / Reference Domains

github.com84 · platform/reference
w3.org7 · platform/reference
wordpress.org5 · platform/reference
api.wordpress.org3 · platform/reference
downloads.wordpress.org2 · platform/reference
gnu.org2 · platform/reference
codex.wordpress.org1 · platform/reference
opensource.org1 · platform/reference

External Asset Domains

No external asset domains detected.

Incoming Endpoints

/wp-json/cwis/v5/restREST

register_rest_route

wp_ajax_nopriv_cwis_restpublic

wp_ajax

wp_ajax_nopriv_cwis_scannerpublic

wp_ajax

Admin AJAX endpoints2
wp_ajax_cwis_restauthenticated

wp_ajax

wp_ajax_cwis_scannerauthenticated

wp_ajax

Score History

First score snapshot

v5.0.2.1

70

Latest

Findings
237
Errors
176
Warnings
61
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

37 nodes

Related Plugins

Dam Spam

1k+ active installs

100
Login Security Captcha

10k+ active installs

100
Protect Login

600 active installs

100
Remove XML-RPC Methods

1k+ active installs

100
Stop XML-RPC Attacks

6k+ active installs

100