Pro Mime Types – Manage file media types

Pro Mime Types adds a nifty admin interface for allowing or blocking many file extensions for uploading media, documents, and other attachments.

v2.2.0Sybre WaaijerUpdated 7 months agoAdded 11 years ago2k+ installs100% rating

attachment image mime-types multisite upload

Score

Errors

Warnings

Change

Category Scores

Security79

Repo94

Performance100

Maintainability62

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

153 findings

Maintainability

126

7 issue groups

I18n

2 issue groups

Security

2 issue groups

Repo Compliance

1 issue group

WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$_comment".56

Category: Maintainability
Occurrences: 56
Severity: warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$_comment".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

ERRORMaintainabilityEcho FoundShort PHP opening tag used with echo; expected "<?php echo \ ..." but found "<?= \ ..."48

Category: Maintainability
Occurrences: 48
Severity: error

Sample message

Short PHP opening tag used with echo; expected "<?php echo \ ..." but found "<?= \ ..."

Generic.PHP.DisallowShortOpenTag.EchoFound

WARNINGI18nText Domain MismatchMismatched text domain. Expected 'pro-mime-types' but got 'default'.19

Category: I18n
Occurrences: 19
Severity: warning

Sample message

Mismatched text domain. Expected 'pro-mime-types' but got 'default'.

WordPress.WP.I18n.TextDomainMismatch Reference

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.6

Category: Maintainability
Occurrences: 6
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;6

Category: Maintainability
Occurrences: 6
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

WARNINGMaintainabilityNon Prefixed Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "pmt_admin_notices".5

Category: Maintainability
Occurrences: 5
Severity: warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "pmt_admin_notices".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().4

Category: Maintainability
Occurrences: 4
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_GET['tab']3

Category: Security
Occurrences: 3
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_GET['tab']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityMissing Unslash$_GET['tab'] not unslashed before sanitization. Use wp_unslash() or similar3

Category: Security
Occurrences: 3
Severity: warning

Sample message

$_GET['tab'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGI18nload plugin textdomain Foundload_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.1

Category: I18n
Occurrences: 1
Severity: warning

Sample message

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.

PluginCheck.CodeAnalysis.DiscouragedFunctions.load_plugin_textdomainFound Reference

Show 2 more

WARNINGMaintainabilityDiscouraged1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

The use of function set_time_limit() is discouraged

Squiz.PHP.DiscouragedFunctions.Discouraged

ERRORRepo Complianceoutdated tested upto header1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Tested up to: 6.9 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_header Reference

Score History

First score snapshot

today

v2.2.0

Latest

Findings: 153
Errors: 55
Warnings: 98
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
todayLatest	80	153	55	98	v2.2.0	2.0.0

Related Plugins

Category Icon

2k+ active installs

100

Lightbox Images for Divi Enhanced

4k+ active installs

100

Attachment Pages Redirect

20k+ active installs

Default Featured Image

60k+ active installs

Favicon Rotator

20k+ active installs

Image Hotspot by DevVN

30k+ active installs