Elementor addon offering 135+ widgets — Mega Menu, Ready Templates, Page Builder, Slider, Gallery, Post Grid, AI Writer & more.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
I18n
10,108
3 issue groups
Security
915
6 issue groups
Maintainability
261
14 issue groups
Performance
22
2 issue groups
ERRORI18nText Domain MismatchMismatched text domain. Expected 'ht-mega-for-elementor' but got "htmega-addons".10,078
- Category
- I18n
- Occurrences
- 10,078
- Severity
- error
Sample message
Mismatched text domain. Expected 'ht-mega-for-elementor' but got "htmega-addons".
ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<div {$title_image_pasition}>"'.720
- Category
- Security
- Occurrences
- 720
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<div {$title_image_pasition}>"'.
WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$activeClass".136
- Category
- Maintainability
- Occurrences
- 136
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$activeClass".
WARNINGSecurityMissing Unslash$_GET['nonce'] not unslashed before sanitization. Use wp_unslash() or similar74
- Category
- Security
- Occurrences
- 74
- Severity
- warning
Sample message
$_GET['nonce'] not unslashed before sanitization. Use wp_unslash() or similar
WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_ENV['CONTENT_TYPE']46
- Category
- Security
- Occurrences
- 46
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_ENV['CONTENT_TYPE']
WARNINGSecurityRecommendedProcessing form data without nonce verification.44
- Category
- Security
- Occurrences
- 44
- Severity
- warning
Sample message
Processing form data without nonce verification.
ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;25
- Category
- Maintainability
- Occurrences
- 25
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
WARNINGMaintainabilityNon Prefixed Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "'wsa_form_bottom_' . $form['id']".24
- Category
- Maintainability
- Occurrences
- 24
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "'wsa_form_bottom_' . $form['id']".
ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.24
- Category
- I18n
- Occurrences
- 24
- Severity
- error
Sample message
A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
WARNINGSecurityInput Not ValidatedDetected usage of a possibly undefined superglobal array index: $_GET['action']. Check that the array index exists before using it.19
- Category
- Security
- Occurrences
- 19
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_GET['action']. Check that the array index exists before using it.
Show 15 moreShow less
WARNINGPerformancePost Not In exclude16
- Category
- Performance
- Occurrences
- 16
- Severity
- warning
Sample message
Using exclusionary parameters, like exclude, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.
WARNINGMaintainabilityNon Prefixed Class Found15
- Category
- Maintainability
- Occurrences
- 15
- Severity
- warning
Sample message
Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "HasTech_Notices".
ERRORMaintainabilityblock api version too low13
- Category
- Maintainability
- Occurrences
- 13
- Severity
- error
Sample message
Editor blocks must define "apiVersion" 3 or higher in block.json for WordPress 7.0+ iframe editor compatibility.
ERRORSecurityException Not Escaped12
- Category
- Security
- Occurrences
- 12
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$data['error']['message']'.
WARNINGMaintainabilityslow db query tax query8
- Category
- Maintainability
- Occurrences
- 8
- Severity
- warning
Sample message
Detected usage of tax_query, possible slow query.
WARNINGMaintainabilitywp reset query wp reset query7
- Category
- Maintainability
- Occurrences
- 7
- Severity
- warning
Sample message
wp_reset_query() is discouraged. Use wp_reset_postdata() instead.
WARNINGMaintainabilityMissing Version6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- warning
Sample message
Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.
ERRORI18nMissing Arg Domain6
- Category
- I18n
- Occurrences
- 6
- Severity
- error
Sample message
Missing $domain parameter in function call to __().
WARNINGPerformancePost Not In post not in6
- Category
- Performance
- Occurrences
- 6
- Severity
- warning
Sample message
Using exclusionary parameters, like post__not_in, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.
ERRORMaintainabilitywp function not compatible with requires wp6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- error
Sample message
Function "str_contains()" requires WordPress 5.9.0, but your plugin minimum supported version is WordPress 5.0.0.
WARNINGMaintainabilityslow db query meta query5
- Category
- Maintainability
- Occurrences
- 5
- Severity
- warning
Sample message
Detected usage of meta_query, possible slow query.
WARNINGMaintainabilityNon Prefixed Function Found5
- Category
- Maintainability
- Occurrences
- 5
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "all_object_taxonomie_show_catagory".
WARNINGMaintainabilityDirect Query4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo Caching4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
WARNINGMaintainabilityslow db query meta key3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- warning
Sample message
Detected usage of meta_key, possible slow query.
Score History
First score snapshot
v3.1.1
24
Latest
- Findings
- 11,334
- Errors
- 10,894
- Warnings
- 440
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 24 | 11,334 | 10,894 | 440 | v3.1.1 | 2.0.0 |
Related Plugins
2k+ active installs
20k+ active installs
1k+ active installs
8k+ active installs
1k+ active installs
10k+ active installs