Improve your SEO with real-time feedback, schema, and clear guidance. Upgrade for AI tools, Google Docs integration, and 24/7 support, no hidden fees.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Maintainability
308
13 issue groups
Security
205
11 issue groups
I18n
3
1 issue group
WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$action_url".110
- Category
- Maintainability
- Occurrences
- 110
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$action_url".
WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.48
- Category
- Maintainability
- Occurrences
- 48
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().47
- Category
- Maintainability
- Occurrences
- 47
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
WARNINGSecurityDatabase parameter is not escapedUnescaped parameter $count_query used in $wpdb->get_col()\n$count_query assigned unsafely at line 437.46
- Category
- Security
- Occurrences
- 46
- Severity
- warning
Sample message
Unescaped parameter $count_query used in $wpdb->get_col()\n$count_query assigned unsafely at line 437.
ERRORSecurityException output is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"Error adding $type column: precision cannot be empty if scale is specified"'.44
- Category
- Security
- Occurrences
- 44
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"Error adding $type column: precision cannot be empty if scale is specified"'.
ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;37
- Category
- Maintainability
- Occurrences
- 37
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
WARNINGSecurityInterpolated SQL is not preparedUse placeholders and $wpdb->prepare(); found interpolated variable $indexable_table at \t\t\tLEFT JOIN $indexable_table AS I\n34
- Category
- Security
- Occurrences
- 34
- Severity
- warning
Sample message
Use placeholders and $wpdb->prepare(); found interpolated variable $indexable_table at \t\t\tLEFT JOIN $indexable_table AS I\n
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$attributes'.21
- Category
- Security
- Occurrences
- 21
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$attributes'.
ERRORSecuritySQL query is not preparedUse placeholders and $wpdb->prepare(); found $indexable_table20
- Category
- Security
- Occurrences
- 20
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $indexable_table
WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "_yoast_run_migrations".18
- Category
- Maintainability
- Occurrences
- 18
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "_yoast_run_migrations".
Show 15 moreShow less
WARNINGSecurityNonce verification recommended16
- Category
- Security
- Occurrences
- 16
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityslow db query meta key11
- Category
- Maintainability
- Occurrences
- 11
- Severity
- warning
Sample message
Detected usage of meta_key, possible slow query.
ERRORSecurityDatabase parameter is not escaped9
- Category
- Security
- Occurrences
- 9
- Severity
- error
Sample message
Unescaped parameter $query used in $wpdb->get_col()\n$query assigned unsafely at line 890.
WARNINGMaintainabilityNon-prefixed function8
- Category
- Maintainability
- Occurrences
- 8
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_wpseo_activate".
ERRORMaintainabilityfile system operations is writable7
- Category
- Maintainability
- Occurrences
- 7
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: is_writable().
WARNINGMaintainabilityslow db query meta query6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- warning
Sample message
Detected usage of meta_query, possible slow query.
WARNINGSecurityInput is not sanitized5
- Category
- Security
- Occurrences
- 5
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_GET['page']
ERRORMaintainabilityfile system operations fopen5
- Category
- Maintainability
- Occurrences
- 5
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().
WARNINGSecurityReplacements Wrong Number4
- Category
- Security
- Occurrences
- 4
- Severity
- warning
Sample message
Incorrect number of replacements passed to $wpdb->prepare(). Found 1 replacement parameters, expected 2.
WARNINGMaintainabilityslow db query meta value4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- warning
Sample message
Detected usage of meta_value, possible slow query.
WARNINGMaintainabilityerror log trigger error4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- warning
Sample message
trigger_error() found. Debug code should not normally be used in production.
ERRORSecuritySetting is missing a sanitization callback3
- Category
- Security
- Occurrences
- 3
- Severity
- error
Sample message
Sanitization missing for register_setting().
WARNINGSecurityRequest data is not unslashed3
- Category
- Security
- Occurrences
- 3
- Severity
- warning
Sample message
$_GET['page'] not unslashed before sanitization. Use wp_unslash() or similar
ERRORMaintainabilityfile system operations fwrite3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().
WARNINGI18nText Domain Mismatch3
- Category
- I18n
- Occurrences
- 3
- Severity
- warning
Sample message
Mismatched text domain. Expected 'wordpress-seo' but got 'default'.
External Connections
Not analyzed yet.
Score History
2 score snapshots
v27.9
24
Latest
- Findings
- 545
- Errors
- 159
- Warnings
- 386
- Check
- 2.0.0
v27.8
24
Score
- Findings
- 545
- Errors
- 159
- Warnings
- 386
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 24 | 545 | 159 | 386 | v27.9 | 2.0.0 |
| 24 | 545 | 159 | 386 | v27.8 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.