MotoPress Appointment Booking makes it easy for time and service-based businesses to accept bookings and appointments online.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
I18n
2,074
2 issue groups
Maintainability
711
10 issue groups
Security
395
11 issue groups
Performance
12
2 issue groups
ERRORI18nText Domain MismatchMismatched text domain. Expected 'motopress-appointment-lite' but got 'easy-digital-downloads'.2,061
- Category
- I18n
- Occurrences
- 2,061
- Severity
- error
Sample message
Mismatched text domain. Expected 'motopress-appointment-lite' but got 'easy-digital-downloads'.
WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$accountURL".239
- Category
- Maintainability
- Occurrences
- 239
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$accountURL".
ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"[{$shortcodeName} post=\"{$postName}\"]"'.205
- Category
- Security
- Occurrences
- 205
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"[{$shortcodeName} post=\"{$postName}\"]"'.
WARNINGMaintainabilityNon Prefixed Function FoundFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_mpa_filter_object_slugs".190
- Category
- Maintainability
- Occurrences
- 190
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_mpa_filter_object_slugs".
WARNINGMaintainabilityNon Prefixed Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "'mpa_prevent_' . $this->getName()".149
- Category
- Maintainability
- Occurrences
- 149
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "'mpa_prevent_' . $this->getName()".
WARNINGMaintainabilityDynamic Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$this->getName() . '_tags'".62
- Category
- Maintainability
- Occurrences
- 62
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$this->getName() . '_tags'".
WARNINGSecurityRecommendedProcessing form data without nonce verification.51
- Category
- Security
- Occurrences
- 51
- Severity
- warning
Sample message
Processing form data without nonce verification.
ERRORSecurityException Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$collectedErrorMessages'.39
- Category
- Security
- Occurrences
- 39
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$collectedErrorMessages'.
WARNINGSecurityMissing Unslash$_GET['booking_id'] not unslashed before sanitization. Use wp_unslash() or similar26
- Category
- Security
- Occurrences
- 26
- Severity
- warning
Sample message
$_GET['booking_id'] not unslashed before sanitization. Use wp_unslash() or similar
WARNINGMaintainabilityslow db query meta queryDetected usage of meta_query, possible slow query.22
- Category
- Maintainability
- Occurrences
- 22
- Severity
- warning
Sample message
Detected usage of meta_query, possible slow query.
Show 15 moreShow less
WARNINGSecurityMissing20
- Category
- Security
- Occurrences
- 20
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGSecurityInput Not Sanitized17
- Category
- Security
- Occurrences
- 17
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_GET['booking_id']
WARNINGMaintainabilityDirect Query14
- Category
- Maintainability
- Occurrences
- 14
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
ERRORI18nMissing Arg Domain13
- Category
- I18n
- Occurrences
- 13
- Severity
- error
Sample message
Missing $domain parameter in function call to esc_attr_e().
WARNINGMaintainabilityNo Caching12
- Category
- Maintainability
- Occurrences
- 12
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
WARNINGSecurityInput Not Validated11
- Category
- Security
- Occurrences
- 11
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_GET['id']. Check that the array index exists before using it.
WARNINGSecurityInterpolated Not Prepared10
- Category
- Security
- Occurrences
- 10
- Severity
- warning
Sample message
Use placeholders and $wpdb->prepare(); found interpolated variable $columnName at "SELECT * FROM $table WHERE $columnName = %s"
ERRORMaintainabilitymissing direct file access protection9
- Category
- Maintainability
- Occurrences
- 9
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
ERRORMaintainabilityrand mt rand8
- Category
- Maintainability
- Occurrences
- 8
- Severity
- error
Sample message
mt_rand() is discouraged. Use the far less predictable wp_rand() instead.
ERRORSecurityUnescaped DBParameter7
- Category
- Security
- Occurrences
- 7
- Severity
- error
Sample message
Unescaped parameter $excludeCommentsString used in $wpdb->get_results()\n$excludeCommentsString assigned unsafely at line 51.
ERRORSecurityNot Prepared6
- Category
- Security
- Occurrences
- 6
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $preparedQuery
WARNINGMaintainabilityslow db query meta key6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- warning
Sample message
Detected usage of meta_key, possible slow query.
WARNINGPerformancePost Not In exclude6
- Category
- Performance
- Occurrences
- 6
- Severity
- warning
Sample message
Using exclusionary parameters, like exclude, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.
WARNINGPerformancePost Not In post not in6
- Category
- Performance
- Occurrences
- 6
- Severity
- warning
Sample message
Using exclusionary parameters, like post__not_in, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.
WARNINGSecurityUnquoted Complex Placeholder3
- Category
- Security
- Occurrences
- 3
- Severity
- warning
Sample message
Complex placeholders used for values in the query string in $wpdb->prepare() will NOT be quoted automagically. Found: %1s.
Score History
First score snapshot
v2.4.4
23
Latest
- Findings
- 3,219
- Errors
- 2,362
- Warnings
- 857
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 23 | 3,219 | 2,362 | 857 | v2.4.4 | 2.0.0 |
Related Plugins
10k+ active installs
10k+ active installs
1k+ active installs
4k+ active installs
10k+ active installs
2k+ active installs