Simple Floating Menu add a simple floating button with various layouts and settings.
Category Scores
Top Issues by Category
maintainability8
security7
repo_compliance1
Issues Details
16 issues found in latest scan
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$nonce'.
Processing form data without nonce verification.
Detected usage of a non-sanitized input variable: $_POST['sfm_settings']
parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.
Tested up to: 6.9 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.
| Code | Type | Message | Count |
|---|---|---|---|
| missing_direct_file_access_protection | ERROR | PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit; | 6 |
| WordPress.Security.EscapeOutput.OutputNotEscaped | ERROR | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$nonce'. | 4 |
| WordPress.Security.NonceVerification.Missing | WARNING | Processing form data without nonce verification. | 2 |
| WordPress.Security.ValidatedSanitizedInput.InputNotSanitized | WARNING | Detected usage of a non-sanitized input variable: $_POST['sfm_settings'] | 1 |
| WordPress.WP.AlternativeFunctions.parse_url_parse_url | ERROR | parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead. | 1 |
| badly_named_files | ERROR | File and folder names must not contain spaces or special characters. | 1 |
| outdated_tested_upto_header | ERROR | Tested up to: 6.9 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress. | 1 |
Latest Snapshot
Findings
16
Errors
13
Warnings
3
Score History
First score snapshot
First scan completed
v1.3.2 · Plugin Check 2.0.0 · Model 2026.06-mvp-static-v2
v1.3.2
77
Latest
- Findings
- 16
- Errors
- 13
- Warnings
- 3
- Plugin Check
- 2.0.0
- Model
- 2026.06-mvp-static-v2
| Scan | Score | Findings | Errors | Warnings | Plugin | Plugin Check | Model |
|---|---|---|---|---|---|---|---|
| Latest | 77 | 16 | 13 | 3 | v1.3.2 | 2.0.0 | 2026.06-mvp-static-v2 |
