Database Access with Adminer

Provides a secure interface to your WordPress database using Adminer, the popular database administration tool.

v3.1.0Roy OrbitsonUpdated Added 1k+ installs90% rating
22
Score
983
Errors
2,553
Warnings
+0
Change

Category Scores

Security0
Repo83
Performance100
Maintainability0

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

3,536 findings

Security

2,530

8 issue groups

Maintainability

960

15 issue groups

I18n

7

2 issue groups

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$$val".901
Category
Maintainability
Occurrences
901
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$$val".

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '" $collation"'.873
Category
Security
Occurrences
873
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '" $collation"'.

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_COOKIE[$cookie]. Check that the array index exists before using it.377
Category
Security
Occurrences
377
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_COOKIE[$cookie]. Check that the array index exists before using it.

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_COOKIE[$conduit['cookie_name']]362
Category
Security
Occurrences
362
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_COOKIE[$conduit['cookie_name']]

WARNINGSecurityRequest data is not unslashed$_COOKIE[$conduit['cookie_name']] not unslashed before sanitization. Use wp_unslash() or similar347
Category
Security
Occurrences
347
Severity
warning

Sample message

$_COOKIE[$conduit['cookie_name']] not unslashed before sanitization. Use wp_unslash() or similar

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.285
Category
Security
Occurrences
285
Severity
warning

Sample message

Processing form data without nonce verification.

WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.263
Category
Security
Occurrences
263
Severity
warning

Sample message

Processing form data without nonce verification.

ERRORMaintainabilitymysql PDOAccessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: \PDO.15
Category
Maintainability
Occurrences
15
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: \PDO.

ERRORSecurityDeprecated function: js_escapejs_escape() has been deprecated since WordPress version 2.8.0. Use esc_js() instead.15
Category
Security
Occurrences
15
Severity
error

Sample message

js_escape() has been deprecated since WordPress version 2.8.0. Use esc_js() instead.

WARNINGSecurityInput is not validated or sanitizedDetected usage of a non-sanitized, non-validated input variable _GET: "$USER@$_GET[host]"8
Category
Security
Occurrences
8
Severity
warning

Sample message

Detected usage of a non-sanitized, non-validated input variable _GET: "$USER@$_GET[host]"

Show 15 more
WARNINGMaintainabilityDiscouraged PHP function5
Category
Maintainability
Occurrences
5
Severity
warning

Sample message

The use of function ini_set() is discouraged

ERRORMaintainabilityDeprecated function: get_settings5
Category
Maintainability
Occurrences
5
Severity
error

Sample message

get_settings() has been deprecated since WordPress version 2.1.0. Use get_option() instead.

ERRORMaintainabilitydate date4
Category
Maintainability
Occurrences
4
Severity
error

Sample message

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

ERRORMaintainabilityunlink unlink4
Category
Maintainability
Occurrences
4
Severity
error

Sample message

unlink() is discouraged. Use wp_delete_file() to delete a file.

ERRORI18nUnordered Placeholders Text4
Category
I18n
Occurrences
4
Severity
error

Sample message

Multiple placeholders in translatable strings should be ordered. Expected "%1$s, %2$s", but got "%s, %s" in 'Could not load one or more ephemeral files from WordPress. The plugin may not be %sset up%s correctly.'.

ERRORMaintainabilityMissing direct file access protection4
Category
Maintainability
Occurrences
4
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

ERRORMaintainabilityNot Allowed3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

Use of heredoc syntax (<<<) is not allowed; use standard strings or inline HTML instead

ERRORMaintainabilityfile system operations fclose3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().

ERRORMaintainabilityfile system operations fread3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fread().

ERRORMaintainabilityrand rand3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

rand() is discouraged. Use the far less predictable wp_rand() instead.

ERRORMaintainabilitystrip tags strip tags3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

ERRORMaintainabilityNon Enqueued Stylesheet3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

Stylesheets must be registered/enqueued via wp_enqueue_style()

ERRORI18nText Domain Mismatch3
Category
I18n
Occurrences
3
Severity
error

Sample message

Mismatched text domain. Expected 'db-access-adminer' but got 'wp-admin'.

ERRORMaintainabilitymysql mysql error2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysql_error.

ERRORMaintainabilitymysql mysql set charset2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysql_set_charset.

External Connections

Potential connections found in static code analysis.

27 domains

Outbound calls

64

External assets

3

Incoming endpoints

0

Notable Domains

rmsoft.sk6 · outbound
mit-license.org4 · outbound
opengameart.org3 · outbound
paypal.com3 · outbound
bueltge.de2 · outbound
famfamfam.com2 · outbound

Platform / Reference Domains

w3.org15 · platform/reference
github.com7 · platform/reference
profiles.wordpress.org1 · platform/reference

External Asset Domains

Incoming Endpoints

No public endpoints detected.

Score History

First score snapshot

v3.1.0

22

Latest

Findings
3,536
Errors
983
Warnings
2,553
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

36 nodes

Related Plugins

Add From Server Reloaded

3k+ active installs

99
Change Table Prefix

1k+ active installs

99
Crafthemes Demo Import

400 active installs

99
Custom Post Exporter

3k+ active installs

99
99