Swift Performance is a cache and performance booster plugin. It can speed up your site, improve SEO scores and user experience.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
I18n
1,726
4 issue groups
Security
1,300
11 issue groups
Maintainability
563
10 issue groups
ERRORI18nText Domain MismatchMismatched text domain. Expected 'swift-performance-lite' but got 'luv-framework'.1,575
- Category
- I18n
- Occurrences
- 1,575
- Severity
- error
Sample message
Mismatched text domain. Expected 'swift-performance-lite' but got 'luv-framework'.
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<script data-dont-merge=\"\">(function(){document.addEventListener('DOMContentLoaded',function(){requestAnimationFrame(function e(){var t=document.querySelectorAll('.elementor-background-video-embed:not([data-swift-iframe-lazyload]');for(var n in t)('object'==typeof HTMLElement?t[n]instanceof HTMLElement:t[n]&&'object'==typeof t[n]&&null!==t[n]&&1===t[n].nodeType&&'string'==typeof t[n].nodeName)&&void 0===t[n].dataset.src&&(t[n].setAttribute('data-src',t[n].getAttribute('src')),t[n].setAttribute('data-swift-elementor-yt-lazyload','true'),t[n].setAttribute('src',''));requestAnimationFrame(e)})});function iv(a){if(typeof a.getBoundingClientRect!=='function'){return false}var b=a.getBoundingClientRect();return(b.bottom+{$preload_point}>=0&&b.right+{$preload_point}>=0&&b.top-{$preload_point}<=(window.innerHeight||document.documentElement.clientHeight)&&b.left-{$preload_point}<=(window.innerWidth||document.documentElement.clientWidth))}function ll(){var a=document.querySelectorAll('[data-swift-elementor-yt-lazyload]');for(var i in a){if(iv(a[i])){a[i].onload=function(){window.dispatchEvent(new Event('resize'));};a[i].setAttribute('src',(typeof a[i].dataset.src != 'undefined' ? a[i].dataset.src : a[i].src));a[i].setAttribute('style',a[i].dataset.style);a[i].removeAttribute('data-swift-elementor-yt-lazyload')}}requestAnimationFrame(ll)}requestAnimationFrame(ll)})();</script>"'.375
- Category
- Security
- Occurrences
- 375
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<script data-dont-merge=\"\">(function(){document.addEventListener('DOMContentLoaded',function(){requestAnimationFrame(function e(){var t=document.querySelectorAll('.elementor-background-video-embed:not([data-swift-iframe-lazyload]');for(var n in t)('object'==typeof HTMLElement?t[n]instanceof HTMLElement:t[n]&&'object'==typeof t[n]&&null!==t[n]&&1===t[n].nodeType&&'string'==typeof t[n].nodeName)&&void 0===t[n].dataset.src&&(t[n].setAttribute('data-src',t[n].getAttribute('src')),t[n].setAttribute('data-swift-elementor-yt-lazyload','true'),t[n].setAttribute('src',''));requestAnimationFrame(e)})});function iv(a){if(typeof a.getBoundingClientRect!=='function'){return false}var b=a.getBoundingClientRect();return(b.bottom+{$preload_point}>=0&&b.right+{$preload_point}>=0&&b.top-{$preload_point}<=(window.innerHeight||document.documentElement.clientHeight)&&b.left-{$preload_point}<=(window.innerWidth||document.documentElement.clientWidth))}function ll(){var a=document.querySelectorAll('[data-swift-elementor-yt-lazyload]');for(var i in a){if(iv(a[i])){a[i].onload=function(){window.dispatchEvent(new Event('resize'));};a[i].setAttribute('src',(typeof a[i].dataset.src != 'undefined' ? a[i].dataset.src : a[i].src));a[i].setAttribute('style',a[i].dataset.style);a[i].removeAttribute('data-swift-elementor-yt-lazyload')}}requestAnimationFrame(ll)}requestAnimationFrame(ll)})();</script>"'.
WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_COOKIE['spcid']237
- Category
- Security
- Occurrences
- 237
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_COOKIE['spcid']
WARNINGSecurityRequest data is not unslashed$_COOKIE['spcid'] not unslashed before sanitization. Use wp_unslash() or similar234
- Category
- Security
- Occurrences
- 234
- Severity
- warning
Sample message
$_COOKIE['spcid'] not unslashed before sanitization. Use wp_unslash() or similar
WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.176
- Category
- Security
- Occurrences
- 176
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.136
- Category
- Maintainability
- Occurrences
- 136
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().135
- Category
- Maintainability
- Occurrences
- 135
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$$this".116
- Category
- Maintainability
- Occurrences
- 116
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$$this".
WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_GET['cc']. Check that the array index exists before using it.113
- Category
- Security
- Occurrences
- 113
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_GET['cc']. Check that the array index exists before using it.
ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.94
- Category
- I18n
- Occurrences
- 94
- Severity
- error
Sample message
A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
Show 15 moreShow less
ERRORMaintainabilityMissing direct file access protection67
- Category
- Maintainability
- Occurrences
- 67
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
WARNINGSecurityMissing nonce verification57
- Category
- Security
- Occurrences
- 57
- Severity
- warning
Sample message
Processing form data without nonce verification.
ERRORSecuritySQL query is not prepared50
- Category
- Security
- Occurrences
- 50
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $hash_in
WARNINGMaintainabilityNon-prefixed hook name49
- Category
- Maintainability
- Occurrences
- 49
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "admin_head".
ERRORI18nMissing Arg Domain30
- Category
- I18n
- Occurrences
- 30
- Severity
- error
Sample message
Missing $domain parameter in function call to __().
ERRORI18nUnordered Placeholders Text27
- Category
- I18n
- Occurrences
- 27
- Severity
- error
Sample message
Multiple placeholders in translatable strings should be ordered. Expected "%1$s, %2$d, %3$s, %4$s, %5$s", but got "%s, %d, %s, %s, %s" in 'If you run out of credit, you will not be able to use Image Optimizer. You have %s%d%s images which are not optimzed yet. Upgrade to Swift Performance Pro to %sget unlimited Image Optimizer!%s'.
WARNINGSecurityInterpolated SQL is not prepared20
- Category
- Security
- Occurrences
- 20
- Severity
- warning
Sample message
Use placeholders and $wpdb->prepare(); found interpolated variable {$__in} at "warmup WHERE id IN ({$__in})"
ERRORMaintainabilitydate date14
- Category
- Maintainability
- Occurrences
- 14
- Severity
- error
Sample message
date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.
ERRORSecurityUnsafe printing function14
- Category
- Security
- Occurrences
- 14
- Severity
- error
Sample message
All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
WARNINGMaintainabilityMissing Version13
- Category
- Maintainability
- Occurrences
- 13
- Severity
- warning
Sample message
Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.
ERRORSecurityDatabase parameter is not escaped12
- Category
- Security
- Occurrences
- 12
- Severity
- error
Sample message
Unescaped parameter $__in used in $wpdb->get_results()\n$__in assigned unsafely at line 460.
ERRORSecurityException output is not escaped12
- Category
- Security
- Occurrences
- 12
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '": {$pattern}"'.
ERRORMaintainabilityfile system operations is writable12
- Category
- Maintainability
- Occurrences
- 12
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: is_writable().
ERRORMaintainabilitywp function not compatible with requires wp11
- Category
- Maintainability
- Occurrences
- 11
- Severity
- error
Sample message
Function "delete_term_meta()" requires WordPress 4.4.0, but your plugin minimum supported version is WordPress 4.0.0.
ERRORMaintainabilityOffloaded Content10
- Category
- Maintainability
- Occurrences
- 10
- Severity
- error
Sample message
Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.
External Connections
Not analyzed yet.
Score History
First score snapshot
v2.3.7.3
22
Latest
- Findings
- 3,671
- Errors
- 2,346
- Warnings
- 1,325
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 22 | 3,671 | 2,346 | 1,325 | v2.3.7.3 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.
Relationship links
Author
Issue
Related
Author
Issue
Related
Related Plugins
4k+ active installs
2k+ active installs
60k+ active installs
50k+ active installs
60k+ active installs
1k+ active installs