LWS Cleaner

Clean everything on your website easily!

v2.4.5Aurélien LWSUpdated Added 20k+ installs96% rating
38
Score
81
Errors
129
Warnings
+0
Change

Category Scores

Security0
Repo94
Performance100
Maintainability70

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

210 findings

Maintainability

108

5 issue groups

I18n

53

5 issue groups

Security

48

9 issue groups

Repo Compliance

1

1 issue group

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.48
Category
Maintainability
Occurrences
48
Severity
warning

Sample message

Use of a direct database call is discouraged.

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().48
Category
Maintainability
Occurrences
48
Severity
warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.39
Category
I18n
Occurrences
39
Severity
error

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

ERRORSecuritySQL query is not preparedUse placeholders and $wpdb->prepare(); found $data13
Category
Security
Occurrences
13
Severity
error

Sample message

Use placeholders and $wpdb->prepare(); found $data

WARNINGSecurityRequest data is not unslashed$_POST['ajax_slug'] not unslashed before sanitization. Use wp_unslash() or similar12
Category
Security
Occurrences
12
Severity
warning

Sample message

$_POST['ajax_slug'] not unslashed before sanitization. Use wp_unslash() or similar

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$list[4]'.8
Category
Security
Occurrences
8
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$list[4]'.

ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;7
Category
Maintainability
Occurrences
7
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

ERRORI18nNo Empty StringsThe $text text string should have translatable content. Found: ''6
Category
I18n
Occurrences
6
Severity
error

Sample message

The $text text string should have translatable content. Found: ''

ERRORSecurityDatabase parameter is not escapedUnescaped parameter $data used in $wpdb->get_results()\n$data assigned unsafely at line 1318.5
Category
Security
Occurrences
5
Severity
error

Sample message

Unescaped parameter $data used in $wpdb->get_results()\n$data assigned unsafely at line 1318.

WARNINGI18nNo Html Wrapped StringsTranslatable string should not be wrapped in HTML. Found: '<strong>%d auto-draft(s)</strong>'5
Category
I18n
Occurrences
5
Severity
warning

Sample message

Translatable string should not be wrapped in HTML. Found: '<strong>%d auto-draft(s)</strong>'

Show 10 more
WARNINGSecurityInterpolated SQL is not prepared4
Category
Security
Occurrences
4
Severity
warning

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $charset_collate at ) $charset_collate;"

WARNINGMaintainabilityMissing Version3
Category
Maintainability
Occurrences
3
Severity
warning

Sample message

Resource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.

WARNINGMaintainabilitySchema Change2
Category
Maintainability
Occurrences
2
Severity
warning

Sample message

Attempting a database schema change is discouraged.

WARNINGSecurityUnfinished Prepare2
Category
Security
Occurrences
2
Severity
warning

Sample message

Replacement variables found, but no valid placeholders found in the query.

WARNINGSecurityInput is not validated2
Category
Security
Occurrences
2
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['lws_cleaner_delete_plugin_specific']. Check that the array index exists before using it.

ERRORI18nMissing Arg Domain2
Category
I18n
Occurrences
2
Severity
error

Sample message

Missing $domain parameter in function call to __().

WARNINGI18nDiscouraged text-domain loading1
Category
I18n
Occurrences
1
Severity
warning

Sample message

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.

WARNINGSecurityDatabase parameter is not escaped1
Category
Security
Occurrences
1
Severity
warning

Sample message

Unescaped parameter $lws_cl_table_name used in $wpdb->query()

WARNINGSecurityInput is not sanitized1
Category
Security
Occurrences
1
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_POST['bulk-unignore']

ERRORRepo Complianceplugin header no license1
Category
Repo Compliance
Occurrences
1
Severity
error

Sample message

Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.

External Connections

Not analyzed yet.

Score History

First score snapshot

v2.4.5

38

Latest

Findings
210
Errors
81
Warnings
129
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

26 nodes

Related Plugins

LWS Affiliation

800 active installs

86
LWS Hide Login

20k+ active installs

45
LWSCache

6k+ active installs

33
LWS Tools

10k+ active installs

31
PhastPress

10k+ active installs

29