NextGEN Gallery Sidebar Widget

A widget to show NextGEN galleries in your sidebar.

v0.4.3maffUpdated 14 years agoAdded 17 years ago600 installs100% rating

gallery image photo picture widgets

Score

Errors

Warnings

Change

Category Scores

Security0

Repo80

Performance100

Maintainability91

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

69 findings

Security

4 issue groups

Maintainability

4 issue groups

Repo Compliance

4 issue groups

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$instance['autothumb_params']'.39

Category: Security
Occurrences: 39
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$instance['autothumb_params']'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

ERRORSecuritySQL query is not preparedUse placeholders and $wpdb->prepare(); found $gallery11

Category: Security
Occurrences: 11
Severity: error

Sample message

Use placeholders and $wpdb->prepare(); found $gallery

WordPress.DB.PreparedSQL.NotPrepared

ERRORSecurityDatabase parameter is not escapedUnescaped parameter $gallery->previewpic used in $wpdb->get_row()\n$gallery->previewpic used without escaping.4

Category: Security
Occurrences: 4
Severity: error

Sample message

Unescaped parameter $gallery->previewpic used in $wpdb->get_row()\n$gallery->previewpic used without escaping.

PluginCheck.Security.DirectDB.UnescapedDBParameter

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.4

Category: Maintainability
Occurrences: 4
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().4

Category: Maintainability
Occurrences: 4
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

ERRORMaintainabilityForbidden PHP function foundThe use of function create_function() is forbidden1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

The use of function create_function() is forbidden

Generic.PHP.ForbiddenFunctions.Found

WARNINGSecurityDatabase parameter is not escapedUnescaped parameter $where used in $wpdb->get_results()\n$where assigned unsafely at line 71.1

Category: Security
Occurrences: 1
Severity: warning

Sample message

Unescaped parameter $where used in $wpdb->get_results()\n$where assigned unsafely at line 71.

PluginCheck.Security.DirectDB.UnescapedDBParameter

ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

ERRORRepo Complianceno licenseMissing "License". Please update your readme with a valid GPLv2 (or later) compatible license.1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Missing "License". Please update your readme with a valid GPLv2 (or later) compatible license.

no_license Reference

ERRORRepo Complianceoutdated tested upto headerTested up to: 3.3 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Tested up to: 3.3 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_header Reference

Show 2 more

ERRORRepo Complianceplugin header no license1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.

plugin_header_no_license Reference

WARNINGRepo Compliancereadme parser warnings too many tags1

Category: Repo Compliance
Occurrences: 1
Severity: warning

Sample message

One or more tags were ignored. Please limit your plugin to 5 tags.

readme_parser_warnings_too_many_tags

External Connections

Potential connections found in static code analysis.

1 domains

Outbound calls

External assets

Incoming endpoints

Notable Domains

ailoo.net2 · outbound

External Asset Domains

No external asset domains detected.

Incoming Endpoints

No public endpoints detected.

Score History

First score snapshot

yesterday

v0.4.3

Latest

Findings: 69
Errors: 59
Warnings: 10
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
yesterdayLatest	40	69	59	10	v0.4.3	2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

29 nodes

Loading map

PluginAuthorCategoryIssueDomainRelated

Relationship links

Issue

Domain

ailoo.net2 signals

Related Plugins

Category Icon

2k+ active installs

100

Gallery with thumbnail slider

3k+ active installs

100

Lightbox Images for Divi Enhanced

4k+ active installs

100

Simple Block Gallery

1k+ active installs

100

Default Featured Image

60k+ active installs

Favicon Rotator

20k+ active installs