Simple Accessibility Button

Simple plugin that allow you add accessibility button to your website

v2.3.1YYDevelopmentUpdated Added 900 installs100% rating
41
Score
33
Errors
171
Warnings
+0
Change

Category Scores

Security0
Repo94
Performance100
Maintainability82

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

204 findings

Maintainability

112

4 issue groups

Security

87

6 issue groups

I18n

4

3 issue groups

Repo Compliance

1

1 issue group

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$accessibility_background_color".108
Category
Maintainability
Occurrences
108
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$accessibility_background_color".

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$display_inline_echo'.29
Category
Security
Occurrences
29
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$display_inline_echo'.

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_POST['accessibility_background_color']. Check that the array index exists before using it.24
Category
Security
Occurrences
24
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['accessibility_background_color']. Check that the array index exists before using it.

WARNINGSecurityRequest data is not unslashed$_GET['error-message'] not unslashed before sanitization. Use wp_unslash() or similar23
Category
Security
Occurrences
23
Severity
warning

Sample message

$_GET['error-message'] not unslashed before sanitization. Use wp_unslash() or similar

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_GET['error-message']5
Category
Security
Occurrences
5
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_GET['error-message']

WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.4
Category
Security
Occurrences
4
Severity
warning

Sample message

Processing form data without nonce verification.

WARNINGI18nDiscouraged text-domain loadingload_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.2
Category
I18n
Occurrences
2
Severity
warning

Sample message

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.

WARNINGMaintainabilityNon-prefixed functionFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "output_yydev_accessibility".2
Category
Maintainability
Occurrences
2
Severity
warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "output_yydev_accessibility".

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.2
Category
Security
Occurrences
2
Severity
warning

Sample message

Processing form data without nonce verification.

ERRORMaintainabilityNo Explicit VersionVersion parameter is not explicitly set or has been set to an equivalent of "false" for wp_enqueue_script; This means that the WordPress core version will be used which is not recommended for plugin or theme development.1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

Version parameter is not explicitly set or has been set to an equivalent of "false" for wp_enqueue_script; This means that the WordPress core version will be used which is not recommended for plugin or theme development.

Show 4 more
ERRORI18nNon Singular String Literal Text1
Category
I18n
Occurrences
1
Severity
error

Sample message

The $text parameter must be a single text string literal. Found: $yydev_accessibility_html

ERRORI18nText Domain Mismatch1
Category
I18n
Occurrences
1
Severity
error

Sample message

Mismatched text domain. Expected 'yydevelopment-accessibility' but got 'yydev_accessibility'.

WARNINGMaintainabilitymismatched plugin name1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Plugin name "Simple Accessibility Button" is different from the name declared in plugin header "YYDevelopment - Accessibility".

ERRORRepo Complianceplugin header no license1
Category
Repo Compliance
Occurrences
1
Severity
error

Sample message

Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.

External Connections

Potential connections found in static code analysis.

2 domains

Outbound calls

12

External assets

0

Incoming endpoints

2

Notable Domains

yydevelopment.com8 · outbound

Platform / Reference Domains

wordpress.org4 · platform/reference

External Asset Domains

No external asset domains detected.

Incoming Endpoints

No public endpoints detected.

Admin AJAX endpoints2
wp_ajax_yydev_accessibility_stop_notice_for_nowauthenticated

wp_ajax

wp_ajax_yydev_accessibility_stop_notice_foreverauthenticated

wp_ajax

Score History

First score snapshot

v2.3.1

41

Latest

Findings
204
Errors
33
Warnings
171
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

29 nodes

Related Plugins