Page & Post Notes

Simple plugin that allow you to notes on pages and posts

v1.3.5YYDevelopmentUpdated 1 month agoAdded 6 years ago1k+ installs88% rating

memo note notes page notes post notes

Score

Errors

Warnings

Change

Category Scores

Security0

Repo94

Performance100

Maintainability85

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

89 findings

Maintainability

5 issue groups

Security

6 issue groups

Repo Compliance

1 issue group

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$button_class".44

Category: Maintainability
Occurrences: 44
Severity: warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$button_class".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$button_class'.9

Category: Security
Occurrences: 9
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$button_class'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST['nonce']7

Category: Security
Occurrences: 7
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_POST['nonce']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityRequest data is not unslashed$_POST['nonce'] not unslashed before sanitization. Use wp_unslash() or similar7

Category: Security
Occurrences: 7
Severity: warning

Sample message

$_POST['nonce'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.6

Category: Maintainability
Occurrences: 6
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().5

Category: Maintainability
Occurrences: 5
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

WARNINGSecurityInterpolated SQL is not preparedUse placeholders and $wpdb->prepare(); found interpolated variable $page_id at " WHERE page_post_id = $page_id "3

Category: Security
Occurrences: 3
Severity: warning

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $page_id at " WHERE page_post_id = $page_id "

WordPress.DB.PreparedSQL.InterpolatedNotPrepared

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_POST['yydev_direction_class']. Check that the array index exists before using it.3

Category: Security
Occurrences: 3
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['yydev_direction_class']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

ERRORSecuritySQL query is not preparedUse placeholders and $wpdb->prepare(); found $table_name2

Category: Security
Occurrences: 2
Severity: error

Sample message

Use placeholders and $wpdb->prepare(); found $table_name

WordPress.DB.PreparedSQL.NotPrepared

WARNINGMaintainabilitySchema ChangeAttempting a database schema change is discouraged.1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Attempting a database schema change is discouraged.

WordPress.DB.DirectDatabaseQuery.SchemaChange

Show 2 more

WARNINGMaintainabilitymismatched plugin name1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Plugin name "Page & Post Notes" is different from the name declared in plugin header "YYDevelopment - Page & Post Notes".

mismatched_plugin_name Reference

ERRORRepo Complianceplugin header no license1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.

plugin_header_no_license Reference

External Connections

Not analyzed yet.

Score History

First score snapshot

3 days ago

v1.3.5

Latest

Findings: 89
Errors: 12
Warnings: 77
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
3 days agoLatest	41	89	12	77	v1.3.5	2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

29 nodes

Loading map

PluginAuthorCategoryIssueRelated

Relationship links

Issue

Related Plugins

Plugin Notes Plus

9k+ active installs

Simple Post Notes

9k+ active installs

Dashboard Sticky Notes

2k+ active installs

Dashboard Notepad

10k+ active installs

WP Dashboard Notes

20k+ active installs

Disclaimer Popup

1k+ active installs