Unlimited Elements Blocks Library

WordPress all-in-one addons pack with the best blocks for WordPress, offering 100+ free blocks, templates, and tools to create stunning websites!

v2.0.10Unlimited ElementsUpdated Added 400 installs100% rating
22
Score
708
Errors
1,822
Warnings
+0
Change

Category Scores

Security0
Repo89
Performance85
Maintainability0

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

2,530 findings

Maintainability

1,768

15 issue groups

Security

696

10 issue groups

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$account_addon_ids".1,267
Category
Maintainability
Occurrences
1,267
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$account_addon_ids".

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '" <a href='{$skip_url}' class='button button-small button-secondary'>{$use_plugin_anonymously_text}</a>"'.529
Category
Security
Occurrences
529
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '" <a href='{$skip_url}' class='button button-small button-secondary'>{$use_plugin_anonymously_text}</a>"'.

WARNINGMaintainabilityNon-prefixed functionFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: &quot;UCIsAddonLibraryPluginExists&quot;.103
Category
Maintainability
Occurrences
103
Severity
warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: &quot;UCIsAddonLibraryPluginExists&quot;.

ERRORMaintainabilitywp function not compatible with requires wpFunction "get_avatar_data()" requires WordPress 4.2.0, but your plugin minimum supported version is WordPress 3.5.0.94
Category
Maintainability
Occurrences
94
Severity
error

Sample message

Function "get_avatar_data()" requires WordPress 4.2.0, but your plugin minimum supported version is WordPress 3.5.0.

WARNINGMaintainabilityNon-prefixed classClasses declared by a theme/plugin should start with the theme/plugin prefix. Found: &quot;FS_Admin_Menu_Manager&quot;.57
Category
Maintainability
Occurrences
57
Severity
warning

Sample message

Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: &quot;FS_Admin_Menu_Manager&quot;.

WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: &quot;admin_footer&quot;.45
Category
Maintainability
Occurrences
45
Severity
warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: &quot;admin_footer&quot;.

WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.45
Category
Security
Occurrences
45
Severity
warning

Sample message

Processing form data without nonce verification.

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.42
Category
Maintainability
Occurrences
42
Severity
warning

Sample message

Use of a direct database call is discouraged.

ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;41
Category
Maintainability
Occurrences
41
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().36
Category
Maintainability
Occurrences
36
Severity
warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

Show 15 more
WARNINGMaintainabilityNon-prefixed constant26
Category
Maintainability
Occurrences
26
Severity
warning

Sample message

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: &quot;FS_API__ADDRESS&quot;.

WARNINGSecurityDatabase parameter is not escaped25
Category
Security
Occurrences
25
Severity
warning

Sample message

Unescaped parameter $changelogTable used in $wpdb-&gt;query()\n$changelogTable assigned unsafely at line 143.

WARNINGSecurityInput is not sanitized25
Category
Security
Occurrences
25
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_COOKIE[&quot;woocommerce_recently_viewed&quot;]

WARNINGSecurityRequest data is not unslashed22
Category
Security
Occurrences
22
Severity
warning

Sample message

$_COOKIE[&quot;woocommerce_recently_viewed&quot;] not unslashed before sanitization. Use wp_unslash() or similar

WARNINGSecurityInterpolated SQL is not prepared13
Category
Security
Occurrences
13
Severity
warning

Sample message

Use placeholders and $wpdb-&gt;prepare(); found interpolated variable $fieldsTable at \t\t\t\t\t\t\tFROM $fieldsTable\n

WARNINGMaintainabilityslow db query meta key11
Category
Maintainability
Occurrences
11
Severity
warning

Sample message

Detected usage of meta_key, possible slow query.

WARNINGMaintainabilityDynamic hook name11
Category
Maintainability
Occurrences
11
Severity
warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: &quot;$filterName&quot;.

WARNINGSecurityMissing nonce verification11
Category
Security
Occurrences
11
Severity
warning

Sample message

Processing form data without nonce verification.

WARNINGMaintainabilityerror log print r10
Category
Maintainability
Occurrences
10
Severity
warning

Sample message

print_r() found. Debug code should not normally be used in production.

WARNINGSecurityInput is not validated10
Category
Security
Occurrences
10
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_FILES[&#039;json_file&#039;][&#039;type&#039;]. Check that the array index exists before using it.

WARNINGMaintainabilityDiscouraged PHP function9
Category
Maintainability
Occurrences
9
Severity
warning

Sample message

The use of function ini_set() is discouraged

WARNINGMaintainabilityslow db query tax query9
Category
Maintainability
Occurrences
9
Severity
warning

Sample message

Detected usage of tax_query, possible slow query.

ERRORSecurityException output is not escaped8
Category
Security
Occurrences
8
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$message'.

WARNINGSecuritywp redirect wp redirect8
Category
Security
Occurrences
8
Severity
warning

Sample message

wp_redirect() found. Using wp_safe_redirect(), along with the &quot;allowed_redirect_hosts&quot; filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.

WARNINGMaintainabilityslow db query meta query7
Category
Maintainability
Occurrences
7
Severity
warning

Sample message

Detected usage of meta_query, possible slow query.

External Connections

Potential connections found in static code analysis.

58 domains

Outbound calls

300

External assets

0

Incoming endpoints

0

Notable Domains

google.com27 · outbound
fontawesome.io9 · outbound
jqueryui.com9 · outbound
fontawesome.com8 · outbound

Platform / Reference Domains

gnu.org75 · platform/reference
w3.org35 · platform/reference
github.com7 · platform/reference
dev.w3.org2 · platform/reference
opensource.org2 · platform/reference

External Asset Domains

No external asset domains detected.

Incoming Endpoints

No public endpoints detected.

Score History

First score snapshot

v2.0.10

22

Latest

Findings
2,530
Errors
708
Warnings
1,822
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

37 nodes

Related Plugins