Keep your dashboard clean by grouping all the WordPress notice and hide them in a notification center.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Security
94
8 issue groups
I18n
42
2 issue groups
Maintainability
40
12 issue groups
Repo Compliance
3
3 issue groups
ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$data['spam_words']'.48
- Category
- Security
- Occurrences
- 48
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$data['spam_words']'.
ERRORI18nText Domain MismatchMismatched text domain. Expected 'wp-admin-notification-center' but got 'wanc'.41
- Category
- I18n
- Occurrences
- 41
- Severity
- error
Sample message
Mismatched text domain. Expected 'wp-admin-notification-center' but got 'wanc'.
WARNINGSecurityMissing Unslash$_GET['order'] not unslashed before sanitization. Use wp_unslash() or similar13
- Category
- Security
- Occurrences
- 13
- Severity
- warning
Sample message
$_GET['order'] not unslashed before sanitization. Use wp_unslash() or similar
WARNINGSecurityRecommendedProcessing form data without nonce verification.11
- Category
- Security
- Occurrences
- 11
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$displayNotice".8
- Category
- Maintainability
- Occurrences
- 8
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$displayNotice".
WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_POST['notices']6
- Category
- Security
- Occurrences
- 6
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_POST['notices']
ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().5
- Category
- Maintainability
- Occurrences
- 5
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
WARNINGSecurityInput Not ValidatedDetected usage of a possibly undefined superglobal array index: $_POST['notices']. Check that the array index exists before using it.5
- Category
- Security
- Occurrences
- 5
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_POST['notices']. Check that the array index exists before using it.
Show 15 moreShow less
WARNINGMaintainabilityMissing Version5
- Category
- Maintainability
- Occurrences
- 5
- Severity
- warning
Sample message
Resource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.
ERRORSecurityUnescaped DBParameter4
- Category
- Security
- Occurrences
- 4
- Severity
- error
Sample message
Unescaped parameter $query used in $wpdb->get_results()\n$query assigned unsafely at line 16.
ERRORSecurityNot Prepared4
- Category
- Security
- Occurrences
- 4
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $query
ERRORMaintainabilityNo Explicit Version4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- error
Sample message
Version parameter is not explicitly set or has been set to an equivalent of "false" for wp_enqueue_script; This means that the WordPress core version will be used which is not recommended for plugin or theme development.
WARNINGSecurityMissing3
- Category
- Security
- Occurrences
- 3
- Severity
- warning
Sample message
Processing form data without nonce verification.
ERRORMaintainabilityEcho Found1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Short PHP opening tag used with echo; expected "<?php echo wp_create_nonce ..." but found "<?= wp_create_nonce ..."
WARNINGMaintainabilityerror log var dump1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
var_dump() found. Debug code should not normally be used in production.
ERRORMaintainabilitystrip tags strip tags1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.
ERRORI18nMissing Arg Domain1
- Category
- I18n
- Occurrences
- 1
- Severity
- error
Sample message
Missing $domain parameter in function call to __().
ERRORMaintainabilitycase sensitive files1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Multiple files with the same name but different case were found. This can be problematic on certain file systems.
ERRORMaintainabilitycase sensitive folders1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Multiple folders with the same name but different case were found. This can be problematic on certain file systems.
ERRORRepo Compliancelicense mismatch1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- error
Sample message
Your plugin has a different license declared in the readme file and plugin header. Please update your readme with a valid GPL license identifier.
WARNINGMaintainabilitymismatched plugin name1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Plugin name "Hide admin notices - Admin Notification Center" is different from the name declared in plugin header "Hide admin notices".
ERRORRepo Complianceoutdated tested upto header1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- error
Sample message
Tested up to: 6.9 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.
WARNINGRepo Complianceplugin header nonexistent domain path1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- warning
Sample message
The "Domain Path" header in the plugin file must point to an existing folder. Found: "languages"
Score History
First score snapshot
v3.4.0
36
Latest
- Findings
- 181
- Errors
- 114
- Warnings
- 67
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 36 | 181 | 114 | 67 | v3.4.0 | 2.0.0 |
Related Plugins
0 active installs
2k+ active installs
1k+ active installs
4k+ active installs
1k+ active installs
4k+ active installs