Export Categories, Tags and Taxonomies
Prioritized issue groups from the latest Plugin Check scan
Security
148
9 issue groups
I18n
27
5 issue groups
Maintainability
22
11 issue groups
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"sections['$section'] = '$section_slug';"'.
Sample message
The $domain parameter must be a single text string literal. Found: $this->WPB_PREFIX
Sample message
All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
Sample message
Processing form data without nonce verification.
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
Sample message
Processing form data without nonce verification.
Sample message
In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.
Sample message
Detected usage of a possibly undefined superglobal array index: $_GET['page']. Check that the array index exists before using it.
Sample message
The plugin name includes a restricted term. Your chosen plugin name - "WP Export Categories & Taxonomies" - contains the restricted term "wp" which cannot be used at all in your plugin name.
Sample message
date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.
Sample message
Detected usage of a non-sanitized input variable: $_GET['page']
Sample message
$_GET['page'] not unslashed before sanitization. Use wp_unslash() or similar
Sample message
No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.
Sample message
Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.
Sample message
Sanitization missing for register_setting().
Sample message
Use of a direct database call is discouraged.
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
Sample message
Use placeholders and $wpdb->prepare(); found $sql
Sample message
seems_utf8() has been deprecated since WordPress version 6.9.0. Use wp_is_valid_utf8() instead.
Sample message
wp_htmledit_pre() has been deprecated since WordPress version 4.3.0. Use format_for_editor() instead.
Sample message
The parameter "array( 'get' => 'all' )" at position #2 of get_terms() has been deprecated since WordPress version 4.5.0. Instead do not pass the parameter.
Sample message
The parameter "FALSE" at position #2 of load_plugin_textdomain() has been deprecated since WordPress version 2.7.0. Use "" instead.
Sample message
A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
Sample message
The $text parameter must be a single text string literal. Found: $this->WPB_PLUGIN_NAME.' options updated.'
Sample message
Mismatched text domain. Expected 'wp-export-categories-taxonomies' but got 'wsi'.
Potential connections found in static code analysis.
Outbound calls
15
External assets
1
Incoming endpoints
0
No public endpoints detected.
First score snapshot
v1.0.3
37
Latest
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 37 | 204 | 169 | 35 | v1.0.3 | 2.0.0 |
Author, categories, issues, domains, and nearby plugins.