Simple Yearly Archive is a rather neat and simple Wordpress plugin that allows you to display your archives in a year-based list.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Security
94
7 issue groups
Maintainability
24
10 issue groups
I18n
17
3 issue groups
Performance
1
1 issue group
ERRORSecurityUnsafe printing functionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.32
- Category
- Security
- Occurrences
- 32
- Severity
- error
Sample message
All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$_cur'.31
- Category
- Security
- Occurrences
- 31
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$_cur'.
ERRORMaintainabilitydate datedate() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.10
- Category
- Maintainability
- Occurrences
- 10
- Severity
- error
Sample message
date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.
WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST['sya_append']9
- Category
- Security
- Occurrences
- 9
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_POST['sya_append']
WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_POST['sya_append']. Check that the array index exists before using it.9
- Category
- Security
- Occurrences
- 9
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_POST['sya_append']. Check that the array index exists before using it.
WARNINGSecurityRequest data is not unslashed$_POST['sya_append'] not unslashed before sanitization. Use wp_unslash() or similar9
- Category
- Security
- Occurrences
- 9
- Severity
- warning
Sample message
$_POST['sya_append'] not unslashed before sanitization. Use wp_unslash() or similar
ERRORI18nMissing Arg DomainMissing $domain parameter in function call to __().7
- Category
- I18n
- Occurrences
- 7
- Severity
- error
Sample message
Missing $domain parameter in function call to __().
ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.6
- Category
- I18n
- Occurrences
- 6
- Severity
- error
Sample message
A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
ERRORI18nNon Singular String Literal DomainThe $domain parameter must be a single text string literal. Found: $this->plugin_slug4
- Category
- I18n
- Occurrences
- 4
- Severity
- error
Sample message
The $domain parameter must be a single text string literal. Found: $this->plugin_slug
ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
Show 13 moreShow less
ERRORSecurityDatabase parameter is not escaped2
- Category
- Security
- Occurrences
- 2
- Severity
- error
Sample message
Unescaped parameter $_q used in $wpdb->get_row()\n$_q assigned unsafely at line 490.
WARNINGMaintainabilityDirect Query2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo Caching2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
ERRORSecuritySQL query is not prepared2
- Category
- Security
- Occurrences
- 2
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $_q
WARNINGMaintainabilityDiscouraged PHP function2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
wp_reset_query() is discouraged. Use wp_reset_postdata() instead.
WARNINGMaintainabilityDeprecated parameter: get_terms parameter 21
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
The parameter "[\r\n\t\t\t'fields' => 'ids'\r\n\t\t]" at position #2 of get_terms() has been deprecated since WordPress version 4.5.0. Instead do not pass the parameter.
WARNINGMaintainabilityNot In Footer1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.
ERRORMaintainabilityNon Enqueued Stylesheet1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Stylesheets must be registered/enqueued via wp_enqueue_style()
WARNINGPerformancePost Not In exclude1
- Category
- Performance
- Occurrences
- 1
- Severity
- warning
Sample message
Using exclusionary parameters, like exclude, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.
ERRORSupply ChainHidden files included1
- Category
- Supply Chain
- Occurrences
- 1
- Severity
- error
Sample message
Hidden files are not permitted.
ERRORMaintainabilityinvalid tested upto minor1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Tested up to: 7.0.99 The version number should only include major versions 7.0.
ERRORRepo Complianceplugin header no license1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- error
Sample message
Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.
ERRORMaintainabilitytrunk stable tag1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Incorrect Stable Tag. It's recommended not to use "Stable Tag: trunk". Your Stable Tag is meant to be the stable version of your plugin and it needs to be exactly the same with the Version in your main plugin file's header. Any mismatch can prevent users from downloading the correct plugin files from WordPress.org.
External Connections
Not analyzed yet.
Score History
First score snapshot
v2.2.6
35
Latest
- Findings
- 138
- Errors
- 102
- Warnings
- 36
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 35 | 138 | 102 | 36 | v2.2.6 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.
Relationship links
Author
Issue
Related
Author
Issue
Related
Related Plugins
700 active installs
900 active installs
900 active installs
800 active installs
800 active installs
400 active installs