Datafeedr Comparison Sets

Automatically create price comparison sets for your WooCommerce products or by using a shortcode.

v0.9.81datafeedrUpdated 3 months agoAdded 10 years ago3k+ installs100% rating

comparison comparison sets price compare price comparison price comparison set

Score

450

Errors

Warnings

Change

Category Scores

Security0

Repo94

Performance100

Maintainability68

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

503 findings

Security

262

6 issue groups

I18n

204

5 issue groups

Maintainability

9 issue groups

Repo Compliance

1 issue group

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$content'.232

Category: Security
Occurrences: 232
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$content'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

ERRORI18nNon Singular String Literal DomainThe $domain parameter must be a single text string literal. Found: DFRCS_DOMAIN191

Category: I18n
Occurrences: 191
Severity: error

Sample message

The $domain parameter must be a single text string literal. Found: DFRCS_DOMAIN

WordPress.WP.I18n.NonSingularStringLiteralDomain Reference

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.11

Category: Maintainability
Occurrences: 11
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().10

Category: Maintainability
Occurrences: 10
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

ERRORSecurityUnsafe printing functionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.7

Category: Security
Occurrences: 7
Severity: error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunction Reference

WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.7

Category: Security
Occurrences: 7
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

WARNINGSecurityInterpolated SQL is not preparedUse placeholders and $wpdb->prepare(); found interpolated variable $days at "DELETE FROM $table WHERE `updated` < (NOW() - INTERVAL $days DAY) ORDER BY `updated` ASC LIMIT 100"6

Category: Security
Occurrences: 6
Severity: warning

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $days at "DELETE FROM $table WHERE `updated` < (NOW() - INTERVAL $days DAY) ORDER BY `updated` ASC LIMIT 100"

WordPress.DB.PreparedSQL.InterpolatedNotPrepared

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_GET['hash']5

Category: Security
Occurrences: 5
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_GET['hash']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityRequest data is not unslashed$_GET['hash'] not unslashed before sanitization. Use wp_unslash() or similar5

Category: Security
Occurrences: 5
Severity: warning

Sample message

$_GET['hash'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

ERRORI18nText Domain MismatchMismatched text domain. Expected 'datafeedr-comparison-sets' but got 'datafeedr'.5

Category: I18n
Occurrences: 5
Severity: error

Sample message

Mismatched text domain. Expected 'datafeedr-comparison-sets' but got 'datafeedr'.

WordPress.WP.I18n.TextDomainMismatch Reference

Show 11 more

WARNINGMaintainabilityerror log print r4

Category: Maintainability
Occurrences: 4
Severity: warning

Sample message

print_r() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_print_r

ERRORI18nMissing Translators Comment4

Category: I18n
Occurrences: 4
Severity: error

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

WordPress.WP.I18n.MissingTranslatorsComment Reference

ERRORMaintainabilityMissing direct file access protection4

Category: Maintainability
Occurrences: 4
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

WARNINGMaintainabilityNon-prefixed global variable3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$compset".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

ERRORI18nNon Singular String Literal Text3

Category: I18n
Occurrences: 3
Severity: error

Sample message

The $text parameter must be a single text string literal. Found: $p['promo']

WordPress.WP.I18n.NonSingularStringLiteralText Reference

ERRORMaintainabilitydate date1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

WordPress.DateTime.RestrictedFunctions.date_date

WARNINGMaintainabilityNon-prefixed function1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "do_compset".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound

ERRORMaintainabilitystrip tags strip tags1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

WordPress.WP.AlternativeFunctions.strip_tags_strip_tags

WARNINGMaintainabilityMissing Version1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Resource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.

WordPress.WP.EnqueuedResourceParameters.MissingVersion

ERRORI18nMissing Arg Domain1

Category: I18n
Occurrences: 1
Severity: error

Sample message

Missing $domain parameter in function call to esc_html__().

WordPress.WP.I18n.MissingArgDomain Reference

ERRORRepo Compliancelicense mismatch1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Your plugin has a different license declared in the readme file and plugin header. Please update your readme with a valid GPL license identifier.

license_mismatch Reference

Score History

First score snapshot

yesterday

v0.9.81

Latest

Findings: 503
Errors: 450
Warnings: 53
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
yesterdayLatest	38	503	450	53	v0.9.81	2.0.0

Related Plugins

Before + After Images for Divi

3k+ active installs

WPC Smart Compare for WooCommerce

70k+ active installs

Content Egg – Affiliate Product Importer & Price Comparison

10k+ active installs