ProductFrame – Curated products from affiliate feeds

A beautiful way to display products from affiliate network product feeds on your website. Currently supports Daisycon, TradeTracker and AdTraction.

v0.5.1Koen ReusUpdated 7 months agoAdded 7 months ago400 installs0% rating

adtraction affiliate feed products tradetracker

Score

Errors

Warnings

Change

Category Scores

Security24

Repo94

Performance100

Maintainability86

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

88 findings

Maintainability

4 issue groups

Security

5 issue groups

Repo Compliance

1 issue group

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.29

Category: Maintainability
Occurrences: 29
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().24

Category: Maintainability
Occurrences: 24
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

WARNINGSecurityInterpolated SQL is not preparedUse placeholders and $wpdb->prepare(); found interpolated variable $ids at "DELETE FROM {$images_table} WHERE id IN ($ids)"17

Category: Security
Occurrences: 17
Severity: warning

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $ids at "DELETE FROM {$images_table} WHERE id IN ($ids)"

WordPress.DB.PreparedSQL.InterpolatedNotPrepared

WARNINGSecurityDatabase parameter is not escapedUnescaped parameter $image_table used in $wpdb->get_var()\n$image_table assigned unsafely at line 55.8

Category: Security
Occurrences: 8
Severity: warning

Sample message

Unescaped parameter $image_table used in $wpdb->get_var()\n$image_table assigned unsafely at line 55.

PluginCheck.Security.DirectDB.UnescapedDBParameter

WARNINGSecurityUnfinished PrepareReplacement variables found, but no valid placeholders found in the query.4

Category: Security
Occurrences: 4
Severity: warning

Sample message

Replacement variables found, but no valid placeholders found in the query.

WordPress.DB.PreparedSQLPlaceholders.UnfinishedPrepare

ERRORSecurityDatabase parameter is not escapedUnescaped parameter $where_clause used in $wpdb->get_results()\n$where_clause assigned unsafely at line 88.2

Category: Security
Occurrences: 2
Severity: error

Sample message

Unescaped parameter $where_clause used in $wpdb->get_results()\n$where_clause assigned unsafely at line 88.

PluginCheck.Security.DirectDB.UnescapedDBParameter

WARNINGMaintainabilitySchema ChangeAttempting a database schema change is discouraged.1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Attempting a database schema change is discouraged.

WordPress.DB.DirectDatabaseQuery.SchemaChange

WARNINGSecurityReplacements Wrong NumberIncorrect number of replacements passed to $wpdb->prepare(). Found 1 replacement parameters, expected 2.1

Category: Security
Occurrences: 1
Severity: warning

Sample message

Incorrect number of replacements passed to $wpdb->prepare(). Found 1 replacement parameters, expected 2.

WordPress.DB.PreparedSQLPlaceholders.ReplacementsWrongNumber

WARNINGMaintainabilityMissing VersionResource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Resource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.

WordPress.WP.EnqueuedResourceParameters.MissingVersion

ERRORRepo Complianceoutdated tested upto headerTested up to: 6.9 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Tested up to: 6.9 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_header Reference

External Connections

Potential connections found in static code analysis.

7 domains

Outbound calls

External assets

Incoming endpoints

Notable Domains

php-fig.org2 · outbound

api.github.com1 · outbound

deliciousbrains.com1 · outbound

getcomposer.org1 · outbound

koenreus.com1 · outbound

Platform / Reference Domains

github.com10 · platform/reference

w3.org6 · platform/reference

External Asset Domains

No external asset domains detected.

Incoming Endpoints

wp_ajax_nopriv_public

wp_ajax

Score History

First score snapshot

2 days ago

v0.5.1

Latest

Findings: 88
Errors: 3
Warnings: 85
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
2 days agoLatest	55	88	3	85	v0.5.1	2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

33 nodes

Loading map

PluginAuthorCategoryIssueDomainRelated

Relationship links

Issue

Domain

php-fig.org2 signals api.github.com1 signal deliciousbrains.com1 signal getcomposer.org1 signal koenreus.com1 signal

Related Plugins

Add Featured Image to RSS Feed

2k+ active installs

100

Order Limit For WooCommerce ( Free Version )

800 active installs

100

Affiliates WooCommerce Light

1k+ active installs

MATE Recently Viewed Products – Cache Compatible for WooCommerce

400 active installs

Send Images to RSS

3k+ active installs

WebSub (FKA. PubSubHubbub)

100k+ active installs