YayExtra – Product Options for WooCommerce lets you add customizable options and extra fields to your products.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Maintainability
407
10 issue groups
Security
69
7 issue groups
I18n
5
2 issue groups
Repo Compliance
2
2 issue groups
WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$addition_cost".390
- Category
- Maintainability
- Occurrences
- 390
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$addition_cost".
WARNINGSecurityRequest data is not unslashed$_GET['_nonce'] not unslashed before sanitization. Use wp_unslash() or similar32
- Category
- Security
- Occurrences
- 32
- Severity
- warning
Sample message
$_GET['_nonce'] not unslashed before sanitization. Use wp_unslash() or similar
WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_POST['option_field_data']12
- Category
- Security
- Occurrences
- 12
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_POST['option_field_data']
WARNINGSecurityInterpolated SQL is not preparedUse placeholders and $wpdb->prepare(); found interpolated variable {$comparation} at "( postmeta.meta_key = '_price' AND postmeta.meta_value {$comparation} %f )"9
- Category
- Security
- Occurrences
- 9
- Severity
- warning
Sample message
Use placeholders and $wpdb->prepare(); found interpolated variable {$comparation} at "( postmeta.meta_key = '_price' AND postmeta.meta_value {$comparation} %f )"
WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.9
- Category
- Security
- Occurrences
- 9
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "woocommerce_cart_item_permalink".6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "woocommerce_cart_item_permalink".
WARNINGSecurityUnfinished PrepareReplacement variables found, but no valid placeholders found in the query.4
- Category
- Security
- Occurrences
- 4
- Severity
- warning
Sample message
Replacement variables found, but no valid placeholders found in the query.
ERRORI18nText Domain MismatchMismatched text domain. Expected 'yayextra' but got 'woocommerce'.4
- Category
- I18n
- Occurrences
- 4
- Severity
- error
Sample message
Mismatched text domain. Expected 'yayextra' but got 'woocommerce'.
ERRORSecuritySQL query is not preparedUse placeholders and $wpdb->prepare(); found $countQuery2
- Category
- Security
- Occurrences
- 2
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $countQuery
WARNINGMaintainabilityslow db query meta queryDetected usage of meta_query, possible slow query.2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
Detected usage of meta_query, possible slow query.
Show 11 moreShow less
ERRORMaintainabilityMissing direct file access protection2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
WARNINGMaintainabilitytrademarked term2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
The plugin name includes a restricted term. Your chosen plugin name - "YayExtra - WooCommerce Extra Product Options" - contains the restricted term "woocommerce" which cannot be used within in your plugin name, unless your plugin name contains one of the allowed patterns: "for woocommerce", "with woocommerce", "using woocommerce", or "and woocommerce". The term must still not appear anywhere else in your name.
WARNINGI18nDiscouraged text-domain loading1
- Category
- I18n
- Occurrences
- 1
- Severity
- warning
Sample message
load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.
ERRORSecurityDatabase parameter is not escaped1
- Category
- Security
- Occurrences
- 1
- Severity
- error
Sample message
Unescaped parameter $countQuery used in $wpdb->get_var()\n$countQuery assigned unsafely at line 385.
WARNINGMaintainabilityDirect Query1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo Caching1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
ERRORMaintainabilitystrip tags strip tags1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.
WARNINGMaintainabilitymismatched plugin name1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Plugin name "YayExtra - WooCommerce Extra Product Options" is different from the name declared in plugin header "YayExtra Lite - WooCommerce Extra Product Options".
WARNINGMaintainabilitymissing composer json file1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
The "/vendor" directory using composer exists, but "composer.json" file is missing.
ERRORRepo Complianceplugin header no license1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- error
Sample message
Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.
WARNINGRepo Compliancereadme parser warnings no short description present1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- warning
Sample message
The "Short Description" section is missing. An excerpt was generated from your main plugin description.
External Connections
Not analyzed yet.
Score History
First score snapshot
v2.0.3
36
Latest
- Findings
- 483
- Errors
- 11
- Warnings
- 472
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 36 | 483 | 11 | 472 | v2.0.3 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.
Relationship links
Author
Category
Issue
Related
Author
Category
Issue
Related
Related Plugins
3k+ active installs
30k+ active installs
5k+ active installs
50k+ active installs
2k+ active installs
4k+ active installs