Backup, restore or migrate your WordPress website to another host or domain. Schedule backups or run manually. Migrate in minutes.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Maintainability
420
18 issue groups
Security
94
6 issue groups
I18n
27
1 issue group
WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$accept".146
- Category
- Maintainability
- Occurrences
- 146
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$accept".
ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;91
- Category
- Maintainability
- Occurrences
- 91
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
ERRORMaintainabilitywp function not compatible with requires wpFunction "_load_image_to_edit_path()" requires WordPress 3.4.0, but your plugin minimum supported version is WordPress 3.2.0.72
- Category
- Maintainability
- Occurrences
- 72
- Severity
- error
Sample message
Function "_load_image_to_edit_path()" requires WordPress 3.4.0, but your plugin minimum supported version is WordPress 3.2.0.
WARNINGSecurityRecommendedProcessing form data without nonce verification.44
- Category
- Security
- Occurrences
- 44
- Severity
- warning
Sample message
Processing form data without nonce verification.
ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.27
- Category
- I18n
- Occurrences
- 27
- Severity
- error
Sample message
A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
ERRORSecurityNot PreparedUse placeholders and $wpdb->prepare(); found $query26
- Category
- Security
- Occurrences
- 26
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $query
WARNINGMaintainabilityerror log error logerror_log() found. Debug code should not normally be used in production.24
- Category
- Maintainability
- Occurrences
- 24
- Severity
- warning
Sample message
error_log() found. Debug code should not normally be used in production.
WARNINGMaintainabilityNon Prefixed Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "admin_comment_types_dropdown".21
- Category
- Maintainability
- Occurrences
- 21
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "admin_comment_types_dropdown".
WARNINGSecurityUnescaped DBParameterUnescaped parameter $escaped_table_name used in $wpdb->query()\n$escaped_table_name assigned unsafely at line 6403.12
- Category
- Security
- Occurrences
- 12
- Severity
- warning
Sample message
Unescaped parameter $escaped_table_name used in $wpdb->query()\n$escaped_table_name assigned unsafely at line 6403.
WARNINGMaintainabilityNot In FooterIn footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.12
- Category
- Maintainability
- Occurrences
- 12
- Severity
- warning
Sample message
In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.
Show 15 moreShow less
WARNINGMaintainabilityDynamic Hookname Found7
- Category
- Maintainability
- Occurrences
- 7
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$action".
WARNINGSecurityInterpolated Not Prepared6
- Category
- Security
- Occurrences
- 6
- Severity
- warning
Sample message
Use placeholders and $wpdb->prepare(); found interpolated variable $random_table_name at "CREATE TABLE $random_table_name (test INT)"
ERRORMaintainabilitymysql mysql unbuffered query6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- error
Sample message
Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysql_unbuffered_query.
ERRORMaintainabilitydate date6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- error
Sample message
date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.
WARNINGMaintainabilitycurrent user can for blog Found6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- warning
Sample message
current_user_can_for_blog() has been deprecated since WordPress version 6.7.0. Use current_user_can_for_site() instead.
ERRORMaintainabilityfile system operations is writable5
- Category
- Maintainability
- Occurrences
- 5
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: is_writable().
ERRORMaintainabilityrand rand5
- Category
- Maintainability
- Occurrences
- 5
- Severity
- error
Sample message
rand() is discouraged. Use the far less predictable wp_rand() instead.
ERRORMaintainabilityPlugin Directory Write4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- error
Sample message
Plugin folders are deleted when upgraded. Do not save data to the plugin folder using copy(). Detected usage of constant WP_CONTENT_DIR. Use wp_upload_dir() to get the uploads directory path or save to the database instead.
ERRORMaintainabilitymysql mysql errno3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysql_errno.
ERRORMaintainabilitymysql mysql error3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysql_error.
ERRORMaintainabilitymysql mysql query3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysql_query.
ERRORSecuritymysql mysql real escape string3
- Category
- Security
- Occurrences
- 3
- Severity
- error
Sample message
Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysql_real_escape_string.
ERRORMaintainabilitymysql mysqli errno3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_errno.
ERRORSecuritymysql mysqli real escape string3
- Category
- Security
- Occurrences
- 3
- Severity
- error
Sample message
Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_real_escape_string.
WARNINGMaintainabilityNon Prefixed Constant Found3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- warning
Sample message
Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "APP_GCAL_DISABLE".
Score History
First score snapshot
v1.26.5
24
Latest
- Findings
- 576
- Errors
- 277
- Warnings
- 299
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 24 | 576 | 277 | 299 | v1.26.5 | 2.0.0 |
Related Plugins
4k+ active installs
4k+ active installs
2k+ active installs
30k+ active installs
80k+ active installs
30k+ active installs