All-in-One Authorship Solution: Seamless Author Box, Guest Authors, and Co-Authors to enhance your site's authority, credibility, engagement, and SEO.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Security
915
10 issue groups
Maintainability
871
9 issue groups
I18n
278
4 issue groups
Performance
22
2 issue groups
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<li>$err</li>\n"'.395
- Category
- Security
- Occurrences
- 395
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<li>$err</li>\n"'.
WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "_authorship/doing_shortcode/author_box".271
- Category
- Maintainability
- Occurrences
- 271
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "_authorship/doing_shortcode/author_box".
WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$_networks".225
- Category
- Maintainability
- Occurrences
- 225
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$_networks".
ERRORSecurityUnsafe printing functionAll output should be run through an escaping function (like echo esc_html_x() or echo esc_attr_x()), found '_ex'.204
- Category
- Security
- Occurrences
- 204
- Severity
- error
Sample message
All output should be run through an escaping function (like echo esc_html_x() or echo esc_attr_x()), found '_ex'.
WARNINGMaintainabilityerror log debug backtracedebug_backtrace() found. Debug code should not normally be used in production.120
- Category
- Maintainability
- Occurrences
- 120
- Severity
- warning
Sample message
debug_backtrace() found. Debug code should not normally be used in production.
WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.106
- Category
- Maintainability
- Occurrences
- 106
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().105
- Category
- Maintainability
- Occurrences
- 105
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.103
- Category
- I18n
- Occurrences
- 103
- Severity
- error
Sample message
A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
WARNINGSecurityRequest data is not unslashed$_GET[$nonce] not unslashed before sanitization. Use wp_unslash() or similar87
- Category
- Security
- Occurrences
- 87
- Severity
- warning
Sample message
$_GET[$nonce] not unslashed before sanitization. Use wp_unslash() or similar
ERRORI18nMissing Arg DomainMissing $domain parameter in function call to __().80
- Category
- I18n
- Occurrences
- 80
- Severity
- error
Sample message
Missing $domain parameter in function call to __().
Show 15 moreShow less
ERRORI18nUnordered Placeholders Text70
- Category
- I18n
- Occurrences
- 70
- Severity
- error
Sample message
Multiple placeholders in translatable strings should be ordered. Expected "%1$s, %2$s", but got "%s, %s" in '%sAuthorship Data Updater%s - Post counters update will run once the post authorship update process finishes.'.
WARNINGSecurityInput is not sanitized49
- Category
- Security
- Occurrences
- 49
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_GET[$nonce]
WARNINGSecurityMissing nonce verification48
- Category
- Security
- Occurrences
- 48
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGSecurityNonce verification recommended44
- Category
- Security
- Occurrences
- 44
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGSecurityInput is not validated31
- Category
- Security
- Occurrences
- 31
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_POST['author']. Check that the array index exists before using it.
WARNINGSecurityInterpolated SQL is not prepared27
- Category
- Security
- Occurrences
- 27
- Severity
- warning
Sample message
Use placeholders and $wpdb->prepare(); found interpolated variable $ex_placeholders at "p.ID NOT IN ($ex_placeholders)"
WARNINGI18nNo Html Wrapped Strings25
- Category
- I18n
- Occurrences
- 25
- Severity
- warning
Sample message
Translatable string should not be wrapped in HTML. Found: '<span class="ac_error" style="color:white"><strong>ERROR</strong>: Invalid nonce. Reload the page.</span>'
ERRORSecurityDatabase parameter is not escaped17
- Category
- Security
- Occurrences
- 17
- Severity
- error
Sample message
Unescaped parameter $author_value used in $wpdb->query()\n$author_value assigned unsafely at line 1332.
WARNINGMaintainabilityerror log error log14
- Category
- Maintainability
- Occurrences
- 14
- Severity
- warning
Sample message
error_log() found. Debug code should not normally be used in production.
WARNINGPerformancePost Not In exclude14
- Category
- Performance
- Occurrences
- 14
- Severity
- warning
Sample message
Using exclusionary parameters, like exclude, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.
ERRORSecuritySQL query is not prepared13
- Category
- Security
- Occurrences
- 13
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $blog_id
WARNINGMaintainabilityNon-prefixed function12
- Category
- Maintainability
- Occurrences
- 12
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "authorship_add_user_meta_fields_to_wpml".
WARNINGMaintainabilityslow db query meta query11
- Category
- Maintainability
- Occurrences
- 11
- Severity
- warning
Sample message
Detected usage of meta_query, possible slow query.
WARNINGPerformancePost Not In post not in8
- Category
- Performance
- Occurrences
- 8
- Severity
- warning
Sample message
Using exclusionary parameters, like post__not_in, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.
WARNINGMaintainabilityslow db query meta key7
- Category
- Maintainability
- Occurrences
- 7
- Severity
- warning
Sample message
Detected usage of meta_key, possible slow query.
External Connections
Not analyzed yet.
Score History
First score snapshot
v5.2.9
22
Latest
- Findings
- 2,149
- Errors
- 919
- Warnings
- 1,230
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 22 | 2,149 | 919 | 1,230 | v5.2.9 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.
Relationship links
Author
Category
Issue
Related
Author
Category
Issue
Related
Related Plugins
5k+ active installs
2k+ active installs
500 active installs
90k+ active installs
1k+ active installs
20k+ active installs