Cloak Affiliate Links for WooCommerce

Cloak your WooCommerce external & affiliate links.

v1.0.37datafeedrUpdated 9 months agoAdded 13 years ago2k+ installs86% rating

affiliate links cloak external mask redirect

Score

Errors

Warnings

Change

Category Scores

Security28

Repo89

Performance100

Maintainability95

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

34 findings

I18n

1 issue group

Security

6 issue groups

Maintainability

2 issue groups

Repo Compliance

2 issue groups

ERRORI18nNon Singular String Literal DomainThe $domain parameter must be a single text string literal. Found: WCCAL_DOMAIN16

Category: I18n
Occurrences: 16
Severity: error

Sample message

The $domain parameter must be a single text string literal. Found: WCCAL_DOMAIN

WordPress.WP.I18n.NonSingularStringLiteralDomain Reference

ERRORSecurityUnsafe printing functionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.7

Category: Security
Occurrences: 7
Severity: error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunction Reference

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.2

Category: Security
Occurrences: 2
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.2

Category: Security
Occurrences: 2
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

WARNINGSecuritywp redirect wp redirectwp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.1

Category: Security
Occurrences: 1
Severity: warning

Sample message

wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.

WordPress.Security.SafeRedirect.wp_redirect_wp_redirect Reference

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST['wccal_affiliate_base']1

Category: Security
Occurrences: 1
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_POST['wccal_affiliate_base']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityRequest data is not unslashed$_POST['wccal_affiliate_base'] not unslashed before sanitization. Use wp_unslash() or similar1

Category: Security
Occurrences: 1
Severity: warning

Sample message

$_POST['wccal_affiliate_base'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

ERRORMaintainabilityparse url parse urlparse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.

WordPress.WP.AlternativeFunctions.parse_url_parse_url

ERRORRepo Compliancelicense mismatchYour plugin has a different license declared in the readme file and plugin header. Please update your readme with a valid GPL license identifier.1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Your plugin has a different license declared in the readme file and plugin header. Please update your readme with a valid GPL license identifier.

license_mismatch Reference

ERRORRepo Complianceoutdated tested upto headerTested up to: 6.7 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Tested up to: 6.7 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_header Reference

Show 1 more

WARNINGMaintainabilitytrademarked term1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

The plugin slug includes a restricted term. Your plugin slug - "woocommerce-cloak-affiliate-links" - contains the restricted term "woocommerce" which cannot be used within in your plugin slug, unless your plugin slug contains one of the allowed patterns: "for woocommerce", "with woocommerce", "using woocommerce", or "and woocommerce". The term must still not appear anywhere else in your plugin slug.

trademarked_term

Score History

First score snapshot

2 days ago

v1.0.37

Latest

Findings: 34
Errors: 28
Warnings: 6
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
2 days agoLatest	58	34	28	6	v1.0.37	2.0.0

Related Plugins

Input Mask For Elementor Form Fields

20k+ active installs

100

BetterLinks – URL Shortener, Short Links, Link Tracking & Affiliate Link Manager

20k+ active installs

Masks Form Fields

9k+ active installs

Simple Iframe

6k+ active installs

AffiliateX – Amazon Affiliate Plugin, Product Boxes, Comparison Tables & Affiliate Link Tracking

10k+ active installs

Contact Form 7 – Phone mask field

20k+ active installs