User Spam Remover

Automatically removes spam user registrations and other old, unused user accounts. Blocks annoying e-mail to administrator after new registrations.

v1.1JoelUpdated Added 1k+ installs82% rating
31
Score
115
Errors
14
Warnings
+0
Change

Category Scores

Security0
Repo89
Performance100
Maintainability39

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

129 findings

Security

60

7 issue groups

Maintainability

46

16 issue groups

I18n

15

2 issue groups

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '" and $leftover more."'.37
Category
Security
Occurrences
37
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '" and $leftover more."'.

ERRORMaintainabilitymysql mysqli queryAccessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_query.11
Category
Maintainability
Occurrences
11
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_query.

ERRORSecurityException output is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"Could not ADD INDEX $column on table $table. "'.11
Category
Security
Occurrences
11
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"Could not ADD INDEX $column on table $table. "'.

ERRORI18nMissing Arg DomainMissing $domain parameter in function call to __().9
Category
I18n
Occurrences
9
Severity
error

Sample message

Missing $domain parameter in function call to __().

ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.6
Category
I18n
Occurrences
6
Severity
error

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

ERRORMaintainabilitymysql mysqli fetch rowAccessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_fetch_row.5
Category
Maintainability
Occurrences
5
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_fetch_row.

ERRORMaintainabilitymysql mysqli num rowsAccessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_num_rows.4
Category
Maintainability
Occurrences
4
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_num_rows.

ERRORMaintainabilityfile system operations fwriteFile operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().4
Category
Maintainability
Occurrences
4
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().

ERRORMaintainabilitymysql mysqli errorAccessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_error.3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_error.

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST[$removeNowBool]3
Category
Security
Occurrences
3
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_POST[$removeNowBool]

Show 15 more
WARNINGSecurityRequest data is not unslashed3
Category
Security
Occurrences
3
Severity
warning

Sample message

$_POST[$removeNowBool] not unslashed before sanitization. Use wp_unslash() or similar

ERRORMaintainabilityfile system operations fclose3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().

ERRORMaintainabilityfile system operations fopen3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().

ERRORMaintainabilitymysql mysqli free result2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_free_result.

ERRORSecuritymysql mysqli real escape string2
Category
Security
Occurrences
2
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_real_escape_string.

ERRORMaintainabilitydate date2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

ERRORMaintainabilitytimezone change date default timezone set2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

Using date_default_timezone_set() and similar isn't allowed, instead use WP internal timezone support.

WARNINGSecurityNonce verification recommended2
Category
Security
Occurrences
2
Severity
warning

Sample message

Processing form data without nonce verification.

WARNINGSecurityInput is not validated2
Category
Security
Occurrences
2
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_SERVER['REQUEST_URI']. Check that the array index exists before using it.

ERRORMaintainabilityfile system operations is writable2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: is_writable().

WARNINGMaintainabilityDirect Query1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Use of a direct database call is discouraged.

WARNINGMaintainabilityNo Caching1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

ERRORMaintainabilitymysql mysqli fetch assoc1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_fetch_assoc.

ERRORMaintainabilitymysql mysqli fetch field1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

Accessing the database directly should be avoided. Please use the $wpdb object and associated functions instead. Found: mysqli_fetch_field.

WARNINGMaintainabilityerror log trigger error1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

trigger_error() found. Debug code should not normally be used in production.

External Connections

Not analyzed yet.

Score History

First score snapshot

v1.1

31

Latest

Findings
129
Errors
115
Warnings
14
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

29 nodes

Related Plugins

Dam Spam

1k+ active installs

100
Default Admin Color Scheme

800 active installs

100
Logged-in-only

700 active installs

100
PufferDesk

0 active installs

100
Redux Framework

900k+ active installs

100
Simply Disable Comments

6k+ active installs

100