Debug Bar

Adds a debug menu to the admin bar that shows query, cache, and other helpful debugging information.

v1.1.8WordPress.orgUpdated 4 months agoAdded 16 years ago20k+ installs82% rating

debug

Score

Errors

Warnings

Change

Category Scores

Security0

Repo97

Performance100

Maintainability82

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

89 findings

Security

5 issue groups

Maintainability

8 issue groups

Repo Compliance

1 issue group

ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$class'.56

Category: Security
Occurrences: 56
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$class'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGMaintainabilityerror log wp debug backtrace summarywp_debug_backtrace_summary() found. Debug code should not normally be used in production.6

Category: Maintainability
Occurrences: 6
Severity: warning

Sample message

wp_debug_backtrace_summary() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_wp_debug_backtrace_summary

ERRORMaintainabilitystrip tags strip tagsstrip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.5

Category: Maintainability
Occurrences: 5
Severity: error

Sample message

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

WordPress.WP.AlternativeFunctions.strip_tags_strip_tags

WARNINGSecurityRecommendedProcessing form data without nonce verification.4

Category: Security
Occurrences: 4
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

WARNINGMaintainabilityerror log debug backtracedebug_backtrace() found. Debug code should not normally be used in production.3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

debug_backtrace() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_debug_backtrace

WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_SERVER['REQUEST_TIME_FLOAT']3

Category: Security
Occurrences: 3
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_SERVER['REQUEST_TIME_FLOAT']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityMissing Unslash$_SERVER['REQUEST_TIME_FLOAT'] not unslashed before sanitization. Use wp_unslash() or similar3

Category: Security
Occurrences: 3
Severity: warning

Sample message

$_SERVER['REQUEST_TIME_FLOAT'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGSecurityInput Not ValidatedDetected usage of a possibly undefined superglobal array index: $_SERVER['REQUEST_TIME_FLOAT']. Check that the array index exists before using it.2

Category: Security
Occurrences: 2
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_SERVER['REQUEST_TIME_FLOAT']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

ERRORMaintainabilitywp function not compatible with requires wpFunction "_deprecated_constructor()" requires WordPress 4.3.0, but your plugin minimum supported version is WordPress 3.4.0.2

Category: Maintainability
Occurrences: 2
Severity: error

Sample message

Function "_deprecated_constructor()" requires WordPress 4.3.0, but your plugin minimum supported version is WordPress 3.4.0.

wp_function_not_compatible_with_requires_wp Reference

WARNINGMaintainabilityerror log print rprint_r() found. Debug code should not normally be used in production.1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

print_r() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_print_r

Show 4 more

WARNINGMaintainabilityerror log set error handler1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

set_error_handler() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_set_error_handler

WARNINGMaintainabilityNot In Footer1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

WordPress.WP.EnqueuedResourceParameters.NotInFooter

ERRORMaintainabilitymissing direct file access protection1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

WARNINGRepo Compliancereadme reserved contributors1

Category: Repo Compliance
Occurrences: 1
Severity: warning

Sample message

The "Contributors" header in the readme file contains reserved username(s). Found: "wordpressdotorg"

readme_reserved_contributors Reference

Score History

First score snapshot

yesterday

v1.1.8

Latest

Findings: 89
Errors: 64
Warnings: 25
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
yesterdayLatest	41	89	64	25	v1.1.8	2.0.0

Related Plugins

WP Debugging

10k+ active installs

reBusted!

6k+ active installs

Debug

2k+ active installs

Debug Log Manager – Conveniently Monitor and Inspect Errors

10k+ active installs

Easy PHP Settings

2k+ active installs

Debug This

2k+ active installs