WP-Ban

Ban users by IP, IP Range, host name, user agent and referrer url from visiting your WordPress's blog.

v1.69.2Lester ChanUpdated 1 year agoAdded 19 years ago8k+ installs74% rating

ban banned denied deny permission

Score

Errors

108

Warnings

Change

Category Scores

Security0

Repo80

Performance100

Maintainability78

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

207 findings

Security

120

5 issue groups

Maintainability

6 issue groups

I18n

2 issue groups

Repo Compliance

4 issue groups

ERRORSecurityUnsafe printing functionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.60

Category: Security
Occurrences: 60
Severity: error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunction Reference

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$admin_login".53

Category: Maintainability
Occurrences: 53
Severity: warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$admin_login".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<td style=\"text-align: center;\">$key</td>\n"'.27

Category: Security
Occurrences: 27
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<td style=\"text-align: center;\">$key</td>\n"'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGMaintainabilityNon-prefixed functionFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "ban_activate".16

Category: Maintainability
Occurrences: 16
Severity: warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "ban_activate".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST['banned_exclude_ips']15

Category: Security
Occurrences: 15
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_POST['banned_exclude_ips']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGSecurityRequest data is not unslashed$_POST['banned_exclude_ips'] not unslashed before sanitization. Use wp_unslash() or similar15

Category: Security
Occurrences: 15
Severity: warning

Sample message

$_POST['banned_exclude_ips'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.6

Category: I18n
Occurrences: 6
Severity: error

Sample message

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

WordPress.WP.I18n.MissingTranslatorsComment Reference

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_POST['delete_ips']. Check that the array index exists before using it.3

Category: Security
Occurrences: 3
Severity: warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['delete_ips']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated

WARNINGMaintainabilitytrademarked termThe plugin name includes a restricted term. Your chosen plugin name - "WP-Ban" - contains the restricted term "wp" which cannot be used at all in your plugin name.3

Category: Maintainability
Occurrences: 3
Severity: warning

Sample message

The plugin name includes a restricted term. Your chosen plugin name - "WP-Ban" - contains the restricted term "wp" which cannot be used at all in your plugin name.

trademarked_term

WARNINGMaintainabilityDeprecated function: wp_get_siteswp_get_sites() has been deprecated since WordPress version 4.6.0. Use get_sites() instead.2

Category: Maintainability
Occurrences: 2
Severity: warning

Sample message

wp_get_sites() has been deprecated since WordPress version 4.6.0. Use get_sites() instead.

WordPress.WP.DeprecatedFunctions.wp_get_sitesFound

Show 7 more

ERRORMaintainabilityDeprecated parameter: add_option parameter 31

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

The parameter "'Banned Message'" at position #3 of add_option() has been deprecated since WordPress version 2.3.0. Instead do not pass the parameter.

WordPress.WP.DeprecatedParameters.Add_optionParam3Found

ERRORI18nUnordered Placeholders Text1

Category: I18n
Occurrences: 1
Severity: error

Sample message

Multiple placeholders in translatable strings should be ordered. Expected "%1$s, %2$s, %3$s", but got "%s, %s, %s" in 'The Admin\'s IP \'%s\' Fall Within This Range (%s - %s) And Will Not Be Added To Ban List'.

WordPress.WP.I18n.UnorderedPlaceholdersText Reference

ERRORMaintainabilityMissing direct file access protection1

Category: Maintainability
Occurrences: 1
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

ERRORRepo Complianceno license1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Missing "License". Please update your readme with a valid GPLv2 (or later) compatible license.

no_license Reference

ERRORRepo Complianceoutdated tested upto header1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Tested up to: 6.5 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_header Reference

ERRORRepo Complianceplugin header no license1

Category: Repo Compliance
Occurrences: 1
Severity: error

Sample message

Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.

plugin_header_no_license Reference

WARNINGRepo Compliancereadme parser warnings too many tags1

Category: Repo Compliance
Occurrences: 1
Severity: warning

Sample message

One or more tags were ignored. Please limit your plugin to 5 tags.

readme_parser_warnings_too_many_tags

External Connections

Not analyzed yet.

Score History

First score snapshot

5 days ago

v1.69.2

Latest

Findings: 207
Errors: 99
Warnings: 108
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
5 days agoLatest	38	207	99	108	v1.69.2	2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

29 nodes

Loading map

PluginAuthorCategoryIssueRelated

Relationship links

Issue

1k+ active installs

WP-Ban

Category Scores

Issues to Review

External Connections

Score History

Relationship Map

Plugin

Author

Category

Issue

Related

Plugin

Author

Category

Issue

Related

Related Plugins