Issues to Review
Prioritized issue groups from the latest Plugin Check scan
I18n
316
3 issue groups
Security
210
8 issue groups
Maintainability
109
14 issue groups
ERRORI18nText Domain MismatchMismatched text domain. Expected 'woo-3d-viewer' but got '3dprint'.306
- Category
- I18n
- Occurrences
- 306
- Severity
- error
Sample message
Mismatched text domain. Expected 'woo-3d-viewer' but got '3dprint'.
WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.57
- Category
- Security
- Occurrences
- 57
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$attachment_count".36
- Category
- Maintainability
- Occurrences
- 36
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$attachment_count".
ERRORSecurityUnsafe printing functionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.35
- Category
- Security
- Occurrences
- 35
- Severity
- error
Sample message
All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.34
- Category
- Security
- Occurrences
- 34
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityNot In FooterIn footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.32
- Category
- Maintainability
- Occurrences
- 32
- Severity
- warning
Sample message
In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"#$pid "'.31
- Category
- Security
- Occurrences
- 31
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"#$pid "'.
WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_FILES[$name]['error'][$index]. Check that the array index exists before using it.24
- Category
- Security
- Occurrences
- 24
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_FILES[$name]['error'][$index]. Check that the array index exists before using it.
WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "p3d_single_compat_template".18
- Category
- Maintainability
- Occurrences
- 18
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "p3d_single_compat_template".
WARNINGSecurityRequest data is not unslashed$_GET['post'] not unslashed before sanitization. Use wp_unslash() or similar14
- Category
- Security
- Occurrences
- 14
- Severity
- warning
Sample message
$_GET['post'] not unslashed before sanitization. Use wp_unslash() or similar
Show 15 moreShow less
WARNINGSecurityInput is not sanitized13
- Category
- Security
- Occurrences
- 13
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_FILES[$name]['error'][$index]
ERRORI18nMissing Arg Domain7
- Category
- I18n
- Occurrences
- 7
- Severity
- error
Sample message
Missing $domain parameter in function call to esc_html__().
WARNINGMaintainabilityDiscouraged PHP function4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- warning
Sample message
The use of function ini_set() is discouraged
ERRORMaintainabilityfile system operations fopen4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().
ERRORMaintainabilityfile system operations fclose3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().
ERRORI18nNon Singular String Literal Text3
- Category
- I18n
- Occurrences
- 3
- Severity
- error
Sample message
The $text parameter must be a single text string literal. Found: 'Please set <a href="'.admin_url( "admin.php?page=woo3dv_settings#woo3dv_tabs-0" ).'">"Load On"</a> option to "Shortcode" or "Everywhere"!'
ERRORMaintainabilitywp function not compatible with requires wp3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
Function "has_shortcode()" requires WordPress 3.6.0, but your plugin minimum supported version is WordPress 3.5.0.
WARNINGMaintainabilityNon-prefixed function2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "register_woo3dv_menu_page".
WARNINGSecuritywp redirect wp redirect2
- Category
- Security
- Occurrences
- 2
- Severity
- warning
Sample message
wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.
ERRORMaintainabilityfile system operations mkdir2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: mkdir().
WARNINGMaintainabilityDirect Query1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo Caching1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
ERRORMaintainabilityrename rename1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
rename() is discouraged. Use WP_Filesystem::move() to rename a file.
ERRORMaintainabilitystrip tags strip tags1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.
ERRORMaintainabilityMissing direct file access protection1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
External Connections
Potential connections found in static code analysis.
Outbound calls
124
External assets
1
Incoming endpoints
2
Notable Domains
Platform / Reference Domains
External Asset Domains
Incoming Endpoints
No public endpoints detected.
Admin AJAX endpoints2
wp_ajax
wp_ajax
Score History
First score snapshot
v1.8.7
32
Latest
- Findings
- 640
- Errors
- 399
- Warnings
- 241
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 32 | 640 | 399 | 241 | v1.8.7 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.
Relationship links
Plugin
Author
Issue
Domain
Related
Plugin
Author
Issue
Domain
Related
Related Plugins
3k+ active installs
1k+ active installs
500 active installs
400 active installs
400 active installs
700 active installs