Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Security
55
7 issue groups
Maintainability
29
11 issue groups
Repo Compliance
3
3 issue groups
WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.28
- Category
- Security
- Occurrences
- 28
- Severity
- warning
Sample message
Processing form data without nonce verification.
ERRORSecuritySQL query is not preparedUse placeholders and $wpdb->prepare(); found $query12
- Category
- Security
- Occurrences
- 12
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $query
WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.8
- Category
- Maintainability
- Occurrences
- 8
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().7
- Category
- Maintainability
- Occurrences
- 7
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
ERRORSecurityDatabase parameter is not escapedUnescaped parameter $query used in $wpdb->get_results()\n$query assigned unsafely at line 117.4
- Category
- Security
- Occurrences
- 4
- Severity
- error
Sample message
Unescaped parameter $query used in $wpdb->get_results()\n$query assigned unsafely at line 117.
WARNINGSecurityRequest data is not unslashed$_GET[$name] not unslashed before sanitization. Use wp_unslash() or similar4
- Category
- Security
- Occurrences
- 4
- Severity
- warning
Sample message
$_GET[$name] not unslashed before sanitization. Use wp_unslash() or similar
ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
WARNINGSecurityDatabase parameter is not escapedUnescaped parameter $table_name used in $wpdb->get_var()\n$table_name assigned unsafely at line 101.3
- Category
- Security
- Occurrences
- 3
- Severity
- warning
Sample message
Unescaped parameter $table_name used in $wpdb->get_var()\n$table_name assigned unsafely at line 101.
WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_GET[$name]3
- Category
- Security
- Occurrences
- 3
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_GET[$name]
ERRORMaintainabilityparse url parse urlparse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- error
Sample message
parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.
Show 11 moreShow less
ERRORMaintainabilityunlink unlink2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- error
Sample message
unlink() is discouraged. Use wp_delete_file() to delete a file.
ERRORMaintainabilityNot Allowed1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Use of heredoc syntax (<<<) is not allowed; use standard strings or inline HTML instead
WARNINGMaintainabilityABSPATHDetected1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Writing files using ABSPATH may be problematic. Consider using wp_upload_dir() instead if storing user data or generated files.
WARNINGMaintainabilitySchema Change1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Attempting a database schema change is discouraged.
ERRORMaintainabilitydate date1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.
WARNINGSecurityInput is not validated1
- Category
- Security
- Occurrences
- 1
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_REQUEST['page']. Check that the array index exists before using it.
ERRORMaintainabilityrand mt rand1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
mt_rand() is discouraged. Use the far less predictable wp_rand() instead.
ERRORMaintainabilitystrip tags strip tags1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.
ERRORRepo Complianceplugin header unsupported plugin name1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- error
Sample message
The "Plugin Name" header in the plugin file is not valid. It needs to contain at least 5 latin letters (a-Z) and/or numbers. This is necessary because the initial plugin slug is generated from the name.
ERRORRepo Compliancereadme description non official language1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- error
Sample message
The readme description contains unofficial language. It must be written in standard English.
ERRORRepo Compliancereadme short description non official language1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- error
Sample message
The readme short description contains unofficial language. It must be written in standard English.
External Connections
Potential connections found in static code analysis.
Outbound calls
15
External assets
0
Incoming endpoints
1
Notable Domains
External Asset Domains
No external asset domains detected.
Incoming Endpoints
No public endpoints detected.
Admin AJAX endpoints1
wp_ajax
Score History
First score snapshot
v0.0.7
37
Latest
- Findings
- 87
- Errors
- 31
- Warnings
- 56
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 37 | 87 | 31 | 56 | v0.0.7 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.