Frisbii Pay

Accept Visa, MasterCard, Dankort, MobilePay, American Express, Diners Club and more directly on your store with the Frisbii Pay Gateway.

v1.8.13.2FrisbiiUpdated 10 days agoAdded 7 years ago1k+ installs62% rating100% support resolved

Dankort Frisbii billwerk+mastercard visa

Score

Errors

292

Warnings

Change

Category Scores

Security0

Repo86

Performance100

Maintainability48

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

383 findings

Security

193

10 issue groups

Maintainability

186

14 issue groups

I18n

1 issue group

WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$alert_email".83

Category: Maintainability
Occurrences: 83
Severity: warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$alert_email".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

ERRORMaintainabilitywp function not compatible with requires wpFunction "determine_locale()" requires WordPress 5.0.0, but your plugin minimum supported version is WordPress 4.0.0.47

Category: Maintainability
Occurrences: 47
Severity: error

Sample message

Function "determine_locale()" requires WordPress 5.0.0, but your plugin minimum supported version is WordPress 4.0.0.

wp_function_not_compatible_with_requires_wp Reference

WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_COOKIE['billwerk_pll_current_language']45

Category: Security
Occurrences: 45
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_COOKIE['billwerk_pll_current_language']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityMissing Unslash$_COOKIE['billwerk_pll_current_language'] not unslashed before sanitization. Use wp_unslash() or similar41

Category: Security
Occurrences: 41
Severity: warning

Sample message

$_COOKIE['billwerk_pll_current_language'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGSecurityRecommendedProcessing form data without nonce verification.38

Category: Security
Occurrences: 38
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

WARNINGMaintainabilityNon Prefixed Function FoundFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "order_contains_subscription".25

Category: Maintainability
Occurrences: 25
Severity: warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "order_contains_subscription".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound

ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$rows'.21

Category: Security
Occurrences: 21
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$rows'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGSecurityMissingProcessing form data without nonce verification.20

Category: Security
Occurrences: 20
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing

ERRORSecurityUnsafe Printing FunctionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.16

Category: Security
Occurrences: 16
Severity: error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunction Reference

WARNINGMaintainabilityNon Prefixed Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "active_plugins".10

Category: Maintainability
Occurrences: 10
Severity: warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "active_plugins".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound

Show 15 more

WARNINGMaintainabilityDiscouraged9

Category: Maintainability
Occurrences: 9
Severity: warning

Sample message

The use of function ini_set() is discouraged

Squiz.PHP.DiscouragedFunctions.Discouraged

WARNINGSecuritywp redirect wp redirect8

Category: Security
Occurrences: 8
Severity: warning

Sample message

wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.

WordPress.Security.SafeRedirect.wp_redirect_wp_redirect Reference

ERRORMaintainabilityNot Allowed2

Category: Maintainability
Occurrences: 2
Severity: error

Sample message

Use of heredoc syntax (<<<) is not allowed; use standard strings or inline HTML instead

PluginCheck.CodeAnalysis.Heredoc.NotAllowed

WARNINGSecurityInterpolated Not Prepared2

Category: Security
Occurrences: 2
Severity: warning

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $order_id at WHERE `comment_post_ID` = $order_id\n

WordPress.DB.PreparedSQL.InterpolatedNotPrepared

WARNINGMaintainabilityDynamic Hookname Found2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$base_hook_name".

WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound

WARNINGMaintainabilityerror log var export2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

var_export() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_var_export

WARNINGSecurityUnescaped DBParameter1

Category: Security
Occurrences: 1
Severity: warning

Sample message

Unescaped parameter $table used in $wpdb->get_results()\n$table assigned unsafely at line 126.

PluginCheck.Security.DirectDB.UnescapedDBParameter

WARNINGMaintainabilityDirect Query1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo Caching1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

WARNINGMaintainabilityNon Prefixed Class Found1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "WC_ReepayCheckout".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound

WARNINGMaintainabilityerror log error log1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

error_log() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_error_log

ERRORSecurityException Not Escaped1

Category: Security
Occurrences: 1
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'strlen'.

WordPress.Security.EscapeOutput.ExceptionNotEscaped Reference

ERRORI18nMissing Arg Domain1

Category: I18n
Occurrences: 1
Severity: error

Sample message

Missing $domain parameter in function call to _e().

WordPress.WP.I18n.MissingArgDomain Reference

WARNINGMaintainabilitymissing composer json file1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

The "/vendor" directory using composer exists, but "composer.json" file is missing.

missing_composer_json_file Reference

ERRORMaintainabilitymissing direct file access protection1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

Score History

First score snapshot

yesterday

v1.8.13.2

Latest

Findings: 383
Errors: 91
Warnings: 292
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
yesterdayLatest	33	383	91	292	v1.8.13.2	2.0.0

Related Plugins

Paystack WooCommerce Payment Gateway

30k+ active installs

100