File management plugin featuring file upload, download manager, statistics and download log.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Security
101
7 issue groups
Maintainability
88
11 issue groups
WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.76
- Category
- Security
- Occurrences
- 76
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityslow db query meta keyDetected usage of meta_key, possible slow query.21
- Category
- Maintainability
- Occurrences
- 21
- Severity
- warning
Sample message
Detected usage of meta_key, possible slow query.
WARNINGMaintainabilityslow db query meta queryDetected usage of meta_query, possible slow query.17
- Category
- Maintainability
- Occurrences
- 17
- Severity
- warning
Sample message
Detected usage of meta_query, possible slow query.
WARNINGMaintainabilityslow db query tax queryDetected usage of tax_query, possible slow query.14
- Category
- Maintainability
- Occurrences
- 14
- Severity
- warning
Sample message
Detected usage of tax_query, possible slow query.
WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.13
- Category
- Security
- Occurrences
- 13
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.12
- Category
- Maintainability
- Occurrences
- 12
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().9
- Category
- Maintainability
- Occurrences
- 9
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
WARNINGMaintainabilityNon-prefixed classClasses declared by a theme/plugin should start with the theme/plugin prefix. Found: "ShortcodeSharedFiles".8
- Category
- Maintainability
- Occurrences
- 8
- Severity
- warning
Sample message
Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "ShortcodeSharedFiles".
WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_GET['_page']5
- Category
- Security
- Occurrences
- 5
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_GET['_page']
WARNINGMaintainabilityNon-prefixed functionFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "activate_shared_files".3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "activate_shared_files".
Show 8 moreShow less
WARNINGSecurityRequest data is not unslashed3
- Category
- Security
- Occurrences
- 3
- Severity
- warning
Sample message
$_GET['_page'] not unslashed before sanitization. Use wp_unslash() or similar
ERRORSecuritySQL query is not prepared2
- Category
- Security
- Occurrences
- 2
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $clean_type
ERRORSecuritySetting is missing a sanitization callback1
- Category
- Security
- Occurrences
- 1
- Severity
- error
Sample message
Sanitization missing for register_setting().
ERRORSecurityDatabase parameter is not escaped1
- Category
- Security
- Occurrences
- 1
- Severity
- error
Sample message
Unescaped parameter $sql used in $wpdb->query()\n$sql assigned unsafely at line 151.
WARNINGMaintainabilityDynamic hook name1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$shared_files_action".
ERRORMaintainabilityfile system operations readfile1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: readfile().
WARNINGMaintainabilitymismatched plugin name1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Plugin name "Shared Files – File Upload & Download Manager" is different from the name declared in plugin header "Shared Files".
WARNINGMaintainabilitymissing composer json file1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
The "/vendor" directory using composer exists, but "composer.json" file is missing.
External Connections
Not analyzed yet.
Score History
2 score snapshots
v1.7.67
39
Latest
- Findings
- 189
- Errors
- 5
- Warnings
- 184
- Check
- 2.0.0
v1.7.66
38
Score
- Findings
- 193
- Errors
- 5
- Warnings
- 188
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 39 | 189 | 5 | 184 | v1.7.67 | 2.0.0 |
| 38 | 193 | 5 | 188 | v1.7.66 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.
Relationship links
Author
Category
Issue
Related
Author
Category
Issue
Related
Related Plugins
30k+ active installs
3k+ active installs
1k+ active installs
5k+ active installs
20k+ active installs
6k+ active installs