Seers Ai | Consent Management Platform (Easy to set up GDPR/CCPA Compliant Cookie Consent)

Smart, AI-powered 1-click setup to comply with GDPR, CCPA, TIPA, MCDPA, DUA and global data privacy laws. Simple, effective, and future-ready.

v9.4.2Nick SpencerUpdated Added 1k+ installs94% rating
25
Score
1,446
Errors
421
Warnings
+0
Change

Category Scores

Security0
Repo97
Performance100
Maintainability2

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

1,867 findings

Security

987

7 issue groups

I18n

662

6 issue groups

Maintainability

212

12 issue groups

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$D_URL'.657
Category
Security
Occurrences
657
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$D_URL'.

ERRORI18nNon Singular String Literal DomainThe $domain parameter must be a single text string literal. Found: $this->textdomain530
Category
I18n
Occurrences
530
Severity
error

Sample message

The $domain parameter must be a single text string literal. Found: $this->textdomain

WARNINGSecurityRequest data is not unslashed$_GET['action'] not unslashed before sanitization. Use wp_unslash() or similar143
Category
Security
Occurrences
143
Severity
warning

Sample message

$_GET['action'] not unslashed before sanitization. Use wp_unslash() or similar

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_POST['SCCBPP_cookie_consent_already_id']. Check that the array index exists before using it.78
Category
Security
Occurrences
78
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['SCCBPP_cookie_consent_already_id']. Check that the array index exists before using it.

ERRORI18nNon Singular String Literal TextThe $text parameter must be a single text string literal. Found: $D_URL63
Category
I18n
Occurrences
63
Severity
error

Sample message

The $text parameter must be a single text string literal. Found: $D_URL

ERRORI18nMissing Arg DomainMissing $domain parameter in function call to __().58
Category
I18n
Occurrences
58
Severity
error

Sample message

Missing $domain parameter in function call to __().

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.49
Category
Maintainability
Occurrences
49
Severity
warning

Sample message

Use of a direct database call is discouraged.

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().49
Category
Maintainability
Occurrences
49
Severity
warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

ERRORSecuritySQL query is not preparedUse placeholders and $wpdb->prepare(); found $prefix49
Category
Security
Occurrences
49
Severity
error

Sample message

Use placeholders and $wpdb->prepare(); found $prefix

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.39
Category
Security
Occurrences
39
Severity
warning

Sample message

Processing form data without nonce verification.

Show 15 more
WARNINGMaintainabilityNon-prefixed global variable32
Category
Maintainability
Occurrences
32
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$D_URL".

ERRORMaintainabilitywp function not compatible with requires wp31
Category
Maintainability
Occurrences
31
Severity
error

Sample message

Function "get_user_locale()" requires WordPress 4.7.0, but your plugin minimum supported version is WordPress 3.8.0.

WARNINGSecurityInput is not sanitized17
Category
Security
Occurrences
17
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_GET['action']

ERRORMaintainabilityNon Enqueued Stylesheet13
Category
Maintainability
Occurrences
13
Severity
error

Sample message

Stylesheets must be registered/enqueued via wp_enqueue_style()

ERRORMaintainabilityMissing direct file access protection13
Category
Maintainability
Occurrences
13
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

ERRORMaintainabilitybadly named files11
Category
Maintainability
Occurrences
11
Severity
error

Sample message

File and folder names must not contain spaces or special characters.

ERRORI18nText Domain Mismatch8
Category
I18n
Occurrences
8
Severity
error

Sample message

Mismatched text domain. Expected 'seers-cookie-consent-banner-privacy-policy' but got 'Seers'.

WARNINGSecurityNonce verification recommended4
Category
Security
Occurrences
4
Severity
warning

Sample message

Processing form data without nonce verification.

ERRORMaintainabilitystrip tags strip tags4
Category
Maintainability
Occurrences
4
Severity
error

Sample message

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

WARNINGMaintainabilityMissing Version4
Category
Maintainability
Occurrences
4
Severity
warning

Sample message

Resource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.

WARNINGMaintainabilityNon-prefixed class3
Category
Maintainability
Occurrences
3
Severity
warning

Sample message

Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "SeersCookieConsentPluginActivate".

ERRORMaintainabilityOffloaded Content2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.

ERRORI18nMissing Translators Comment2
Category
I18n
Occurrences
2
Severity
error

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

WARNINGMaintainabilityNon-prefixed function1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "seers_consent_optin_script".

ERRORI18nDeprecated parameter: load_plugin_textdomain parameter 21
Category
I18n
Occurrences
1
Severity
error

Sample message

The parameter "true" at position #2 of load_plugin_textdomain() has been deprecated since WordPress version 2.7.0. Use "" instead.

External Connections

Potential connections found in static code analysis.

24 domains

Outbound calls

69

External assets

5

Incoming endpoints

6

Notable Domains

seersco.com11 · outbound
seers.ai10 · outbound
youtu.be6 · outbound
facebook.com2 · outbound
gravatar.com2 · outbound

Platform / Reference Domains

w3.org12 · platform/reference
opensource.org5 · platform/reference
gnu.org2 · platform/reference

External Asset Domains

cmp.seersco.com4 · asset + outbound
youtube.com2 · asset + outbound
cdn.seersco.com1 · asset

Incoming Endpoints

wp_ajax_nopriv_login_apipublic

wp_ajax

wp_ajax_nopriv_savecookiepublic

wp_ajax

Admin AJAX endpoints4
wp_ajax_cookies_policyauthenticated

wp_ajax

wp_ajax_cookies_settingauthenticated

wp_ajax

wp_ajax_login_apiauthenticated

wp_ajax

wp_ajax_savecookieauthenticated

wp_ajax

Score History

First score snapshot

v9.4.2

25

Latest

Findings
1,867
Errors
1,446
Warnings
421
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

37 nodes

Related Plugins