MembershipWorks – Membership, Events & Directory

All-in-one membership, directory, events and donations for organizations. Secure member profiles, renewals, upgrades and limit member only access to c …

v6.15MembershipWorksUpdated 20 days agoAdded 14 years ago2k+ installs88% rating

calendar directory member access membership tickets

Score

Errors

Warnings

Change

Category Scores

Security0

Repo97

Performance100

Maintainability79

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

70 findings

Security

5 issue groups

Maintainability

6 issue groups

I18n

2 issue groups

Repo Compliance

1 issue group

ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$after_title'.17

Category: Security
Occurrences: 17
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$after_title'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_COOKIE['SFSF']9

Category: Security
Occurrences: 9
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_COOKIE['SFSF']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityMissing Unslash$_COOKIE['SFSF'] not unslashed before sanitization. Use wp_unslash() or similar9

Category: Security
Occurrences: 9
Severity: warning

Sample message

$_COOKIE['SFSF'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGSecurityRecommendedProcessing form data without nonce verification.6

Category: Security
Occurrences: 6
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

ERRORI18nMissing Arg DomainMissing $domain parameter in function call to __().6

Category: I18n
Occurrences: 6
Severity: error

Sample message

Missing $domain parameter in function call to __().

WordPress.WP.I18n.MissingArgDomain Reference

ERRORMaintainabilitywp function not compatible with requires wpFunction "esc_textarea()" requires WordPress 3.1.0, but your plugin minimum supported version is WordPress 3.0.2.5

Category: Maintainability
Occurrences: 5
Severity: error

Sample message

Function "esc_textarea()" requires WordPress 3.1.0, but your plugin minimum supported version is WordPress 3.0.2.

wp_function_not_compatible_with_requires_wp Reference

ERRORMaintainabilitystrip tags strip tagsstrip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.4

Category: Maintainability
Occurrences: 4
Severity: error

Sample message

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

WordPress.WP.AlternativeFunctions.strip_tags_strip_tags

ERRORI18nNon Singular String Literal TextThe $text parameter must be a single text string literal. Found: $msg4

Category: I18n
Occurrences: 4
Severity: error

Sample message

The $text parameter must be a single text string literal. Found: $msg

WordPress.WP.I18n.NonSingularStringLiteralText Reference

ERRORMaintainabilityNon Enqueued ScriptScripts must be registered/enqueued via wp_enqueue_script()3

Category: Maintainability
Occurrences: 3
Severity: error

Sample message

Scripts must be registered/enqueued via wp_enqueue_script()

WordPress.WP.EnqueuedResources.NonEnqueuedScript

WARNINGSecurityInput Not ValidatedDetected usage of a possibly undefined superglobal array index: $_SERVER['HTTP_USER_AGENT']. Check that the array index exists before using it.2

Category: Security
Occurrences: 2
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_SERVER['HTTP_USER_AGENT']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

Show 4 more

WARNINGMaintainabilityMissing Version2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

Resource version not set in call to wp_register_script(). This means new versions of the script may not always be loaded due to browser caching.

WordPress.WP.EnqueuedResourceParameters.MissingVersion

ERRORMaintainabilityinvalid plugin name1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

Plugin name header in your readme is missing or invalid. Please update your readme with a valid plugin name header. Eg: "=== Example Name ==="

invalid_plugin_name Reference

ERRORMaintainabilitymissing direct file access protection1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

WARNINGRepo Compliancereadme parser warnings trimmed short description1

Category: Repo Compliance
Occurrences: 1
Severity: warning

Sample message

The "Short Description" section is too long and was truncated. A maximum of 150 characters is supported.

readme_parser_warnings_trimmed_short_description

Score History

First score snapshot

today

v6.15

Latest

Findings: 70
Errors: 41
Warnings: 29
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
todayLatest	40	70	41	29	v6.15	2.0.0

10k+ active installs

100

Calendar

4k+ active installs

HivePress Favorites

8k+ active installs

ICS Calendar

10k+ active installs

Ultimate Member – reCAPTCHA

20k+ active installs

تقویم فارسی – Persian Calendar

1k+ active installs

MembershipWorks – Membership, Events & Directory

Category Scores

Issues to Review

Score History

Related Plugins