Netgsm

Netgsm wordpress eklentisi ile kullanıcılarınıza sms uzaklığında kalın.

v2.9.75netgsmUpdated Added 1k+ installs94% rating
19
Score
334
Errors
308
Warnings
+0
Change

Category Scores

Security0
Repo62
Performance100
Maintainability0

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

642 findings

Maintainability

320

14 issue groups

Security

280

9 issue groups

I18n

14

2 issue groups

ERRORSecuritySetting is missing a sanitization callbackSanitization missing for register_setting().101
Category
Security
Occurrences
101
Severity
error

Sample message

Sanitization missing for register_setting().

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$ContactForm".83
Category
Maintainability
Occurrences
83
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$ContactForm".

ERRORMaintainabilitywp function not compatible with requires wpFunction "esc_textarea()" requires WordPress 3.1.0, but your plugin minimum supported version is WordPress 3.0.0.78
Category
Maintainability
Occurrences
78
Severity
error

Sample message

Function "esc_textarea()" requires WordPress 3.1.0, but your plugin minimum supported version is WordPress 3.0.0.

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.74
Category
Security
Occurrences
74
Severity
warning

Sample message

Processing form data without nonce verification.

ERRORMaintainabilityShort PHP open tag foundShort PHP opening tag used with echo; expected "<?php echo esc_attr ..." but found "<?= esc_attr ..."65
Category
Maintainability
Occurrences
65
Severity
error

Sample message

Short PHP opening tag used with echo; expected "<?php echo esc_attr ..." but found "<?= esc_attr ..."

WARNINGSecurityRequest data is not unslashed$_POST[&#039;_wpnonce&#039;] not unslashed before sanitization. Use wp_unslash() or similar46
Category
Security
Occurrences
46
Severity
warning

Sample message

$_POST[&#039;_wpnonce&#039;] not unslashed before sanitization. Use wp_unslash() or similar

ERRORMaintainabilitydate datedate() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.24
Category
Maintainability
Occurrences
24
Severity
error

Sample message

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_POST[&#039;_wpnonce&#039;]. Check that the array index exists before using it.20
Category
Security
Occurrences
20
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST[&#039;_wpnonce&#039;]. Check that the array index exists before using it.

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST[&#039;_wpnonce&#039;]18
Category
Security
Occurrences
18
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_POST[&#039;_wpnonce&#039;]

ERRORMaintainabilitystrip tags strip tagsstrip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.14
Category
Maintainability
Occurrences
14
Severity
error

Sample message

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

Show 15 more
WARNINGMaintainabilityNon-prefixed function12
Category
Maintainability
Occurrences
12
Severity
warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: &quot;create_sms_tracking_table&quot;.

WARNINGMaintainabilityMissing Version11
Category
Maintainability
Occurrences
11
Severity
warning

Sample message

Resource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.

ERRORSecurityOutput is not escaped10
Category
Security
Occurrences
10
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$iys_text'.

ERRORI18nText Domain Mismatch10
Category
I18n
Occurrences
10
Severity
error

Sample message

Mismatched text domain. Expected 'netgsm' but got 'mydomain'.

ERRORMaintainabilitytimezone change date default timezone set7
Category
Maintainability
Occurrences
7
Severity
error

Sample message

Using date_default_timezone_set() and similar isn't allowed, instead use WP internal timezone support.

WARNINGMaintainabilityDirect Query6
Category
Maintainability
Occurrences
6
Severity
warning

Sample message

Use of a direct database call is discouraged.

WARNINGMaintainabilityNo Caching5
Category
Maintainability
Occurrences
5
Severity
warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

ERRORMaintainabilityMissing direct file access protection5
Category
Maintainability
Occurrences
5
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

WARNINGSecurityInterpolated SQL is not prepared4
Category
Security
Occurrences
4
Severity
warning

Sample message

Use placeholders and $wpdb-&gt;prepare(); found interpolated variable $placeholders at &quot;SELECT user_id, meta_value FROM {$wpdb-&gt;usermeta} WHERE meta_key = %s AND meta_value IN ($placeholders)&quot;

WARNINGMaintainabilityslow db query meta query4
Category
Maintainability
Occurrences
4
Severity
warning

Sample message

Detected usage of meta_query, possible slow query.

WARNINGSecurityNonce verification recommended4
Category
Security
Occurrences
4
Severity
warning

Sample message

Processing form data without nonce verification.

ERRORI18nMissing Arg Domain4
Category
I18n
Occurrences
4
Severity
error

Sample message

Missing $domain parameter in function call to __().

WARNINGMaintainabilityDiscouraged PHP function3
Category
Maintainability
Occurrences
3
Severity
warning

Sample message

The use of function ini_set() is discouraged

WARNINGSecuritywp redirect wp redirect3
Category
Security
Occurrences
3
Severity
warning

Sample message

wp_redirect() found. Using wp_safe_redirect(), along with the &quot;allowed_redirect_hosts&quot; filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.

WARNINGMaintainabilityNot In Footer3
Category
Maintainability
Occurrences
3
Severity
warning

Sample message

In footer ($in_footer) is not set explicitly wp_register_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

External Connections

Potential connections found in static code analysis.

18 domains

Outbound calls

69

External assets

8

Incoming endpoints

8

Notable Domains

api.netgsm.com.tr11 · outbound
stackoverflow.com9 · outbound
fontawesome.io4 · outbound
netgsm.com.tr4 · outbound
getbootstrap.com3 · outbound
limonte.github.io3 · outbound

Platform / Reference Domains

github.com13 · platform/reference
wordpress.org3 · platform/reference
opensource.org1 · platform/reference

External Asset Domains

1.gravatar.com11 · asset + outbound

Incoming Endpoints

wp_ajax_nopriv_netgsm_netasistanticketpublic

wp_ajax

wp_ajax_nopriv_netgsm_sendtf2SMSpublic

wp_ajax

Admin AJAX endpoints6
wp_ajax_netgsm_getNetsantral_Reportauthenticated

wp_ajax

wp_ajax_netgsm_netasistanticketauthenticated

wp_ajax

wp_ajax_netgsm_sendsmsauthenticated

wp_ajax

wp_ajax_netgsm_sendSMS_bulkTabauthenticated

wp_ajax

wp_ajax_netgsm_sendtf2SMSauthenticated

wp_ajax

wp_ajax_netgsm_users_datatableauthenticated

wp_ajax

Score History

2 score snapshots

+0
1007550250Jun 24, 2026, 10:48 PM UTC Score 19/100 Plugin v2.9.74 Plugin Check 2.0.0 338 errors, 298 warningsJul 1, 2026, 07:37 AM UTC Score 19/100 Plugin v2.9.75 Plugin Check 2.0.0 334 errors, 308 warningsJun 24, 2026Jul 1, 2026

v2.9.75

19

Latest

Findings
642
Errors
334
Warnings
308
Check
2.0.0

v2.9.74

19

Score

Findings
636
Errors
338
Warnings
298
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

34 nodes