Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Security
17
5 issue groups
Maintainability
10
8 issue groups
I18n
7
2 issue groups
Supply Chain
1
1 issue group
ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$id'.9
- Category
- Security
- Occurrences
- 9
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$id'.
ERRORI18nMissing Arg DomainMissing $domain parameter in function call to __().6
- Category
- I18n
- Occurrences
- 6
- Severity
- error
Sample message
Missing $domain parameter in function call to __().
WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$RevealIDsForWPAdmin".2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$RevealIDsForWPAdmin".
WARNINGSecurityRecommendedProcessing form data without nonce verification.2
- Category
- Security
- Occurrences
- 2
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_SERVER['REQUEST_URI']2
- Category
- Security
- Occurrences
- 2
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_SERVER['REQUEST_URI']
WARNINGSecurityInput Not ValidatedDetected usage of a possibly undefined superglobal array index: $_SERVER['REQUEST_URI']. Check that the array index exists before using it.2
- Category
- Security
- Occurrences
- 2
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_SERVER['REQUEST_URI']. Check that the array index exists before using it.
WARNINGSecurityMissing Unslash$_SERVER['REQUEST_URI'] not unslashed before sanitization. Use wp_unslash() or similar2
- Category
- Security
- Occurrences
- 2
- Severity
- warning
Sample message
$_SERVER['REQUEST_URI'] not unslashed before sanitization. Use wp_unslash() or similar
ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
WARNINGMaintainabilityNon Prefixed Class FoundClasses declared by a theme/plugin should start with the theme/plugin prefix. Found: "RevealIDsForWPAdmin".1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "RevealIDsForWPAdmin".
WARNINGMaintainabilityNot In FooterIn footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.
Show 7 moreShow less
ERRORMaintainabilityNon Enqueued Stylesheet1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Stylesheets must be registered/enqueued via wp_enqueue_style()
ERRORI18nMissing Translators Comment1
- Category
- I18n
- Occurrences
- 1
- Severity
- error
Sample message
A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
ERRORSupply Chainhidden files1
- Category
- Supply Chain
- Occurrences
- 1
- Severity
- error
Sample message
Hidden files are not permitted.
ERRORMaintainabilityinvalid tested upto minor1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Tested up to: 7.0.99 The version number should only include major versions 7.0.
ERRORRepo Complianceplugin header no license1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- error
Sample message
Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.
WARNINGMaintainabilitytrademarked term1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
The plugin slug includes a restricted term. Your plugin slug - "reveal-ids-for-wp-admin-25" - contains the restricted term "wp" which cannot be used at all in your plugin slug.
ERRORMaintainabilitytrunk stable tag1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Incorrect Stable Tag. It's recommended not to use "Stable Tag: trunk". Your Stable Tag is meant to be the stable version of your plugin and it needs to be exactly the same with the Version in your main plugin file's header. Any mismatch can prevent users from downloading the correct plugin files from WordPress.org.
Score History
First score snapshot
v1.6.2
35
Latest
- Findings
- 36
- Errors
- 23
- Warnings
- 13
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 35 | 36 | 23 | 13 | v1.6.2 | 2.0.0 |
Related Plugins
60k+ active installs
3k+ active installs
60k+ active installs
3k+ active installs
200k+ active installs
8k+ active installs