Ray Enterprise Translation

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

WARNING16

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

Detected usage of a non-sanitized input variable: $_GET['locale']

WARNING13

WordPress.DB.DirectDatabaseQuery.DirectQuery

Use of a direct database call is discouraged.

WARNING13

WordPress.DB.DirectDatabaseQuery.NoCaching

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

ERROR11

wp_function_not_compatible_with_requires_wp

Function "get_sites()" requires WordPress 4.6.0, but your plugin minimum supported version is WordPress 3.8.0.

ERROR10

WordPress.WP.I18n.MissingArgDomain

Missing $domain parameter in function call to __().

WARNING6

WordPress.Security.SafeRedirect.wp_redirect_wp_redirect

wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.

WARNING5

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_manually_load_plugin".

WARNING4

WordPress.DB.SlowDBQuery.slow_db_query_meta_key

Detected usage of meta_key, possible slow query.

ERROR4

application_detected

Application files are not permitted.

WARNING3

WordPress.PHP.DevelopmentFunctions.error_log_error_log

error_log() found. Debug code should not normally be used in production.

WARNING2

WordPress.DB.SlowDBQuery.slow_db_query_meta_value

Detected usage of meta_value, possible slow query.

WARNING2

WordPress.PHP.DevelopmentFunctions.error_log_trigger_error

trigger_error() found. Debug code should not normally be used in production.

ERROR2

WordPress.WP.I18n.UnorderedPlaceholdersText

Multiple placeholders in translatable strings should be ordered. Expected "%1$s, %2$s, %3$s", but got "%s, %s, %s" in 'Missing or unsupported locale, direction, or name. Locale: %s, Name: %s, Direction: %s'.

ERROR2

hidden_files

Hidden files are not permitted.

ERROR1

PluginCheck.CodeAnalysis.Offloading.OffloadedContent

Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.

WARNING1

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedConstantFound

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "PLL_AJAX_ON_FRONT".

WARNING1

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "pll_sanitize_string_translation".

WARNING1

WordPress.PHP.DevelopmentFunctions.error_log_print_r

print_r() found. Debug code should not normally be used in production.

Code	Type	Message	Count
WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound	WARNING	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$_tests_dir".	315
WordPress.Security.NonceVerification.Recommended	WARNING	Processing form data without nonce verification.	106
WordPress.Security.ValidatedSanitizedInput.MissingUnslash	WARNING	$_GET['complete'] not unslashed before sanitization. Use wp_unslash() or similar	70
WordPress.Security.EscapeOutput.OutputNotEscaped	ERROR	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"' $selected>"'.	30
WordPress.Security.ValidatedSanitizedInput.InputNotValidated	WARNING	Detected usage of a possibly undefined superglobal array index: $_GET['document_id']. Check that the array index exists before using it.	25
WordPress.Security.NonceVerification.Missing	WARNING	Processing form data without nonce verification.	20
WordPress.WP.I18n.MissingTranslatorsComment	ERROR	A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.	19
WordPress.Security.ValidatedSanitizedInput.InputNotSanitized	WARNING	Detected usage of a non-sanitized input variable: $_GET['locale']	16
WordPress.DB.DirectDatabaseQuery.DirectQuery	WARNING	Use of a direct database call is discouraged.	13
WordPress.DB.DirectDatabaseQuery.NoCaching	WARNING	Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().	13
wp_function_not_compatible_with_requires_wp	ERROR	Function "get_sites()" requires WordPress 4.6.0, but your plugin minimum supported version is WordPress 3.8.0.	11
WordPress.WP.I18n.MissingArgDomain	ERROR	Missing $domain parameter in function call to __().	10
WordPress.Security.SafeRedirect.wp_redirect_wp_redirect	WARNING	wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.	6
WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound	WARNING	Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_manually_load_plugin".	5
WordPress.DB.SlowDBQuery.slow_db_query_meta_key	WARNING	Detected usage of meta_key, possible slow query.	4
application_detected	ERROR	Application files are not permitted.	4
WordPress.PHP.DevelopmentFunctions.error_log_error_log	WARNING	error_log() found. Debug code should not normally be used in production.	3
WordPress.DB.SlowDBQuery.slow_db_query_meta_value	WARNING	Detected usage of meta_value, possible slow query.	2
WordPress.PHP.DevelopmentFunctions.error_log_trigger_error	WARNING	trigger_error() found. Debug code should not normally be used in production.	2
WordPress.WP.I18n.UnorderedPlaceholdersText	ERROR	Multiple placeholders in translatable strings should be ordered. Expected "%1$s, %2$s, %3$s", but got "%s, %s, %s" in 'Missing or unsupported locale, direction, or name. Locale: %s, Name: %s, Direction: %s'.	2
hidden_files	ERROR	Hidden files are not permitted.	2
PluginCheck.CodeAnalysis.Offloading.OffloadedContent	ERROR	Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.	1
WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedConstantFound	WARNING	Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "PLL_AJAX_ON_FRONT".	1
WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound	WARNING	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "pll_sanitize_string_translation".	1
WordPress.PHP.DevelopmentFunctions.error_log_print_r	WARNING	print_r() found. Debug code should not normally be used in production.	1

Latest Snapshot

Findings

693

Errors

Warnings

606

Score History

First score snapshot

First scan completed Jun 20, 2026

v1.7.3 · Plugin Check 2.0.0 · Model 2026.06-mvp-static-v2

Jun 20, 2026

v1.7.3

Latest

Findings: 693
Errors: 87
Warnings: 606
Plugin Check: 2.0.0
Model: 2026.06-mvp-static-v2

Scan	Score	Findings	Errors	Warnings	Plugin	Plugin Check	Model
Jun 20, 2026Latest	27	693	87	606	v1.7.3	2.0.0	2026.06-mvp-static-v2

Related Plugins

Simple Admin Language Change

10k+ active installs

WPBakery Visual Composer & qTranslate-X

7k+ active installs

bilingual i18n l10n

Performant Translations

40k+ active installs

i18n internationalization localization

WPGlobus

9k+ active installs

WPGlobus localization multilanguage

WPML to Polylang

6k+ active installs

bilingual importer multilingual

Admin Locale

7k+ active installs

admin language locale