Related Posts By PickPlugins

Display Related Post under post by taxonomy and terms.

v2.0.66PickPluginsUpdated 22 days agoAdded 12 years ago3k+ installs92% rating

Score

Errors

Warnings

Change

Category Scores

Security11

Repo100

Performance97

Maintainability73

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

88 findings

Maintainability

11 issue groups

Security

7 issue groups

Performance

1 issue group

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$active".16

Category: Maintainability
Occurrences: 16
Severity: warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$active".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

WARNINGSecurityRequest data is not unslashed$_GET['related_post_from'] not unslashed before sanitization. Use wp_unslash() or similar12

Category: Security
Occurrences: 12
Severity: warning

Sample message

$_GET['related_post_from'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGMaintainabilityMissing VersionResource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.9

Category: Maintainability
Occurrences: 9
Severity: warning

Sample message

Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.

WordPress.WP.EnqueuedResourceParameters.MissingVersion

WARNINGMaintainabilityNon-prefixed classClasses declared by a theme/plugin should start with the theme/plugin prefix. Found: "RelatedPost".7

Category: Maintainability
Occurrences: 7
Severity: warning

Sample message

Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "RelatedPost".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedClassFound

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.6

Category: Security
Occurrences: 6
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing

WARNINGSecurityInterpolated SQL is not preparedUse placeholders and $wpdb->prepare(); found interpolated variable $table at "INSERT INTO $table \r\n5

Category: Security
Occurrences: 5
Severity: warning

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $table at "INSERT INTO $table \r\n

WordPress.DB.PreparedSQL.InterpolatedNotPrepared

ERRORMaintainabilitywp function not compatible with requires wpFunction "wp_date()" requires WordPress 5.3.0, but your plugin minimum supported version is WordPress 3.8.0.4

Category: Maintainability
Occurrences: 4
Severity: error

Sample message

Function "wp_date()" requires WordPress 5.3.0, but your plugin minimum supported version is WordPress 3.8.0.

wp_function_not_compatible_with_requires_wp Reference

WARNINGSecurityDatabase parameter is not escapedUnescaped parameter $table used in $wpdb->get_results()\n$table assigned unsafely at line 1422.3

Category: Security
Occurrences: 3
Severity: warning

Sample message

Unescaped parameter $table used in $wpdb->get_results()\n$table assigned unsafely at line 1422.

PluginCheck.Security.DirectDB.UnescapedDBParameter

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

Show 9 more

WARNINGSecurityInput is not sanitized3

Category: Security
Occurrences: 3
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_POST['related_post_ids']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityInput is not validated3

Category: Security
Occurrences: 3
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['_wpnonce']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

WARNINGMaintainabilityNot In Footer3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

WordPress.WP.EnqueuedResourceParameters.NotInFooter

WARNINGMaintainabilityslow db query tax query2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

Detected usage of tax_query, possible slow query.

WordPress.DB.SlowDBQuery.slow_db_query_tax_query

WARNINGMaintainabilityNon-prefixed hook name2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "plugin_locale".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound

WARNINGSecurityNonce verification recommended2

Category: Security
Occurrences: 2
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

WARNINGPerformancePost Not In post not in2

Category: Performance
Occurrences: 2
Severity: warning

Sample message

Using exclusionary parameters, like post__not_in, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.

WordPressVIPMinimum.Performance.WPQueryParams.PostNotIn_post__not_in

WARNINGMaintainabilitytrademarked term2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

The plugin name includes a restricted term. Your chosen plugin name - "Related Posts By PickPlugins" - contains the restricted term "plugin" which cannot be used at all in your plugin name.

trademarked_term

WARNINGMaintainabilityNon-prefixed function1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "pprp_post_ids_by_tax_terms".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound

External Connections

Not analyzed yet.

Score History

First score snapshot

9 days ago

v2.0.66

Latest

Findings: 88
Errors: 4
Warnings: 84
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
9 days agoLatest	45	88	4	84	v2.0.66	2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

29 nodes

Loading map

PluginAuthorCategoryIssueRelated

Relationship links

Plugin

Author

PickPluginsauthor

Issue

Non-prefixed global variable16 findings Request data is not unslashed12 findings Missing Version9 findings Non-prefixed class7 findings Missing nonce verification6 findings Interpolated SQL is not prepared5 findings wp function not compatible with requires wp4 findings Database parameter is not escaped3 findings

Plugin

Author

PickPluginsauthor

Issue

Related Plugins

Contextual Related Posts

50k+ active installs