Name: All-In-One Security (AIOS) – Security and Firewall
Rating: 4.7
Author: David Anderson / Team Updraft

Top Issues by File

Files with the highest concentration of issues in the latest scan

Issues Details

1906 issues found in latest scan

	Code	Message	Location	Category
ERROR	`WordPress.WP.AlternativeFunctions.file_system_operations_fopen`	File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().	`classes/wp-security-utility-htaccess.php:304:11`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$user".	`other-includes/wp-security-rename-login-feature.php:971:13`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound`	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "validate_password_reset".	`other-includes/wp-security-rename-login-feature.php:1011:19`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.UnsafePrintingFunction`	All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.	`other-includes/wp-security-rename-login-feature.php:1051:46`	Security
ERROR	`WordPress.Security.EscapeOutput.UnsafePrintingFunction`	All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.	`other-includes/wp-security-rename-login-feature.php:1060:99`	Security
ERROR	`WordPress.Security.EscapeOutput.UnsafePrintingFunction`	All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.	`other-includes/wp-security-rename-login-feature.php:1064:48`	Security
ERROR	`WordPress.Security.EscapeOutput.UnsafePrintingFunction`	All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.	`other-includes/wp-security-rename-login-feature.php:1069:42`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'wp_get_password_hint'.	`other-includes/wp-security-rename-login-feature.php:1073:62`	Security
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound`	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "resetpass_form".	`other-includes/wp-security-rename-login-feature.php:1084:23`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.UnsafePrintingFunction`	All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.	`other-includes/wp-security-rename-login-feature.php:1088:108`	Security

1906 total row(s)


19.01.2026, 14:30:52	47s	1	1423	483
12.11.2025, 14:51:27	1m 21s	1	1484	517

All-In-One Security (AIOS) – Security and Firewall

Plugin Repository837

Security775

General244

other-includes/wp-security-rename-login-feature-pre-5-7.php316 issues in this fileTotal: 316Errors: 230Warnings: 86

other-includes/wp-security-rename-login-feature.php211 issues in this fileTotal: 211Errors: 177Warnings: 34

other-includes/wp-security-rename-login-feature-pre-5-2.php174 issues in this fileTotal: 174Errors: 169Warnings: 5

other-includes/wp-security-rename-login-feature-pre-6-6.php154 issues in this fileTotal: 154Errors: 139Warnings: 15

includes/simba-tfa/simba-tfa.php99 issues in this fileTotal: 99Errors: 37Warnings: 62

admin/wp-security-database-menu.php98 issues in this fileTotal: 98Errors: 78Warnings: 20

includes/simba-tfa/providers/totp/loader.php86 issues in this fileTotal: 86Errors: 49Warnings: 37

classes/wp-security-captcha.php48 issues in this fileTotal: 48Errors: 21Warnings: 27

classes/wp-security-general-init-tasks.php40 issues in this fileTotal: 40Errors: 11Warnings: 29

templates/wp-admin/brute-force/captcha-provider.php35 issues in this fileTotal: 35Errors: 35