Posts Like Dislike

Like Dislike for WordPress Posts | WordPress Page | Custom Post Types

v1.1.6Happy CodersUpdated 29 days agoAdded 7 years ago6k+ installs86% rating

Dislike like like dislike page post

Score

157

Errors

Warnings

Change

Category Scores

Security0

Repo97

Performance100

Maintainability85

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

196 findings

Security

6 issue groups

I18n

2 issue groups

Maintainability

3 issue groups

Repo Compliance

1 issue group

ERRORI18nNon Singular String Literal DomainThe $domain parameter must be a single text string literal. Found: PLD_TD87

Category: I18n
Occurrences: 87
Severity: error

Sample message

The $domain parameter must be a single text string literal. Found: PLD_TD

WordPress.WP.I18n.NonSingularStringLiteralDomain Reference

ERRORSecurityUnsafe Printing FunctionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.45

Category: Security
Occurrences: 45
Severity: error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunction Reference

WARNINGSecurityMissing Unslash$_COOKIE['pld_' . $post_id] not unslashed before sanitization. Use wp_unslash() or similar16

Category: Security
Occurrences: 16
Severity: warning

Sample message

$_COOKIE['pld_' . $post_id] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;13

Category: Maintainability
Occurrences: 13
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$i'.12

Category: Security
Occurrences: 12
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$i'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_COOKIE['pld_' . $post_id]9

Category: Security
Occurrences: 9
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_COOKIE['pld_' . $post_id]

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityInput Not ValidatedDetected usage of a possibly undefined superglobal array index: $_POST['post_id']. Check that the array index exists before using it.8

Category: Security
Occurrences: 8
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['post_id']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

WARNINGMaintainabilityNot In FooterIn footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

WordPress.WP.EnqueuedResourceParameters.NotInFooter

WARNINGI18nload plugin textdomain Foundload_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.1

Category: I18n
Occurrences: 1
Severity: warning

Sample message

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.

PluginCheck.CodeAnalysis.DiscouragedFunctions.load_plugin_textdomainFound Reference

WARNINGMaintainabilityerror log print rprint_r() found. Debug code should not normally be used in production.1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

print_r() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_print_r

Show 2 more

WARNINGSecurityMissing1

Category: Security
Occurrences: 1
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing

WARNINGRepo Complianceplugin header nonexistent domain path1

Category: Repo Compliance
Occurrences: 1
Severity: warning

Sample message

The "Domain Path" header in the plugin file must point to an existing folder. Found: "languages"

plugin_header_nonexistent_domain_path Reference

Score History

First score snapshot

today

v1.1.6

Latest

Findings: 196
Errors: 157
Warnings: 39
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
todayLatest	42	196	157	39	v1.1.6	2.0.0

Related Plugins

Pages with category and tag

60k+ active installs

100

Custom Post Exporter

3k+ active installs

Autoremove Attachments

3k+ active installs

HTML Page Sitemap (Block and Shortcode)

10k+ active installs

Add Category to Pages

20k+ active installs

Front Page Category

5k+ active installs