Photo Gallery by 10Web – Mobile-Friendly Image Gallery

Sample message

Simple placeholders should not be quoted in the query string in $wpdb->prepare(). Found: "%d".

Sample message

$_GET[$key] not unslashed before sanitization. Use wp_unslash() or similar

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

Sample message

Processing form data without nonce verification.

Sample message

Detected usage of a non-sanitized input variable: $_FILES[$this->options['param_name']]

Sample message

Replacement variables found, but no valid placeholders found in the query.

Sample message

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST[$wd_options->prefix . '_save_form_fild']. Check that the array index exists before using it.

Sample message

In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

Sample message

Unescaped parameter $join used in $wpdb->get_var()\n$join assigned unsafely at line 1362.

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: mkdir().

Sample message

rand() is discouraged. Use the far less predictable wp_rand() instead.

Sample message

Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

Sample message

The $domain parameter must be a single text string literal. Found: $prefix