Zip Recipes is the best way to easily create a beautiful food blog with professional looking recipes that can be found by Google.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Maintainability
1,562
12 issue groups
Security
1,130
9 issue groups
I18n
86
4 issue groups
WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$VARS".1,209
- Category
- Maintainability
- Occurrences
- 1,209
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$VARS".
ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '" <a href='{$skip_url}' class='button button-small button-secondary'>{$use_plugin_anonymously_text}</a>"'.790
- Category
- Security
- Occurrences
- 790
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '" <a href='{$skip_url}' class='button button-small button-secondary'>{$use_plugin_anonymously_text}</a>"'.
ERRORSecurityUnsafe Printing FunctionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.100
- Category
- Security
- Occurrences
- 100
- Severity
- error
Sample message
All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
WARNINGMaintainabilityNon Prefixed Function FoundFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_fs_text".99
- Category
- Maintainability
- Occurrences
- 99
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_fs_text".
WARNINGSecurityRecommendedProcessing form data without nonce verification.89
- Category
- Security
- Occurrences
- 89
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGMaintainabilityNon Prefixed Class FoundClasses declared by a theme/plugin should start with the theme/plugin prefix. Found: "FS_Admin_Menu_Manager".55
- Category
- Maintainability
- Occurrences
- 55
- Severity
- warning
Sample message
Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "FS_Admin_Menu_Manager".
ERRORI18nMissing Translators CommentA function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.55
- Category
- I18n
- Occurrences
- 55
- Severity
- error
Sample message
A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
WARNINGSecurityMissing Unslash$_GET['_wpnonce'] not unslashed before sanitization. Use wp_unslash() or similar52
- Category
- Security
- Occurrences
- 52
- Severity
- warning
Sample message
$_GET['_wpnonce'] not unslashed before sanitization. Use wp_unslash() or similar
ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;46
- Category
- Maintainability
- Occurrences
- 46
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_GET['_wpnonce']42
- Category
- Security
- Occurrences
- 42
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_GET['_wpnonce']
Show 15 moreShow less
WARNINGMaintainabilityDirect Query30
- Category
- Maintainability
- Occurrences
- 30
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
ERRORMaintainabilitycurl curl setopt28
- Category
- Maintainability
- Occurrences
- 28
- Severity
- error
Sample message
Using cURL functions is highly discouraged. Use wp_remote_get() instead.
WARNINGMaintainabilityNo Caching27
- Category
- Maintainability
- Occurrences
- 27
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
WARNINGMaintainabilityNon Prefixed Constant Found26
- Category
- Maintainability
- Occurrences
- 26
- Severity
- warning
Sample message
Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "FS_API__ADDRESS".
WARNINGSecurityInput Not Validated23
- Category
- Security
- Occurrences
- 23
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_GET['id']. Check that the array index exists before using it.
WARNINGSecurityInterpolated Not Prepared19
- Category
- Security
- Occurrences
- 19
- Severity
- warning
Sample message
Use placeholders and $wpdb->prepare(); found interpolated variable $offset at "$sql $search_sql ORDER BY $orderby $order $offset "
ERRORMaintainabilityEcho Found12
- Category
- Maintainability
- Occurrences
- 12
- Severity
- error
Sample message
Short PHP opening tag used with echo; expected "<?php echo $current ..." but found "<?= $current ..."
WARNINGMaintainabilityNot In Footer12
- Category
- Maintainability
- Occurrences
- 12
- Severity
- warning
Sample message
In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.
ERRORI18nUnordered Placeholders Text12
- Category
- I18n
- Occurrences
- 12
- Severity
- error
Sample message
Multiple placeholders in translatable strings should be ordered. Expected "%1$s, %2$s", but got "%s, %s" in 'If you have a moment, please consider leaving a review on WordPress.org to spread the word. We greatly appreciate it! If you have any questions or feedback, leave us a %smessage%s.'.
ERRORI18nMissing Arg Domain10
- Category
- I18n
- Occurrences
- 10
- Severity
- error
Sample message
Missing $domain parameter in function call to __().
WARNINGMaintainabilityNo Code Found9
- Category
- Maintainability
- Occurrences
- 9
- Severity
- warning
Sample message
No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.
ERRORI18nText Domain Mismatch9
- Category
- I18n
- Occurrences
- 9
- Severity
- error
Sample message
Mismatched text domain. Expected 'zip-recipes' but got 'complianz-gdpr'.
ERRORMaintainabilitywp function not compatible with requires wp9
- Category
- Maintainability
- Occurrences
- 9
- Severity
- error
Sample message
Function "has_block()" requires WordPress 5.0.0, but your plugin minimum supported version is WordPress 4.8.0.
ERRORSecurityNot Prepared8
- Category
- Security
- Occurrences
- 8
- Severity
- error
Sample message
Use placeholders and $wpdb->prepare(); found $query
WARNINGSecurityUnescaped DBParameter7
- Category
- Security
- Occurrences
- 7
- Severity
- warning
Sample message
Unescaped parameter $table used in $wpdb->get_results()\n$table assigned unsafely at line 120.
Score History
First score snapshot
v8.2.8
22
Latest
- Findings
- 2,857
- Errors
- 1,126
- Warnings
- 1,731
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 22 | 2,857 | 1,126 | 1,731 | v8.2.8 | 2.0.0 |
Related Plugins
6k+ active installs
20k+ active installs
1k+ active installs
2k+ active installs
7k+ active installs
40k+ active installs