Name: Wawp – Order Notifications, OTP Verification, Advanced Country Code, and Chat widget for WooCommerce
Rating: 0
Author: 101Gen

Issues Details

16 issues found in latest scan

	Code	Message	Location	Category
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$selected_attr'.	`includes/class-wawp-countrycode.php:207:21`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.	`includes/class-wawp-connector.php:61:21`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.	`includes/class-wawp-connector.php:75:21`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.	`includes/class-wawp-connector.php:100:21`	Security
WARNING	`WordPress.Security.NonceVerification.Recommended`	Processing form data without nonce verification.	`includes/class-wawp-connector.php:112:21`	Security
WARNING	`WordPress.Security.NonceVerification.Recommended`	Processing form data without nonce verification.	`includes/class-wawp-connector.php:112:54`	Security
WARNING	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $table used in $wpdb->get_results("SELECT * FROM $table WHERE status = 'online'")\n$table assigned unsafely at line 796:\n $table = $wpdb->prefix . 'awp_instance_data'	`includes/class-wawp-instances.php:798:23`	Security
WARNING	`WordPress.DB.PreparedSQL.InterpolatedNotPrepared`	Use placeholders and $wpdb->prepare(); found interpolated variable $table at "SELECT * FROM $table WHERE status = 'online'"	`includes/class-wawp-instances.php:798:36`	Security
WARNING	`WordPress.Security.ValidatedSanitizedInput.InputNotSanitized`	Detected usage of a non-sanitized input variable: $_POST['wawp_triggers']	`includes/class-wawp-flow-builder.php:162:80`	Security
WARNING	`WordPress.DB.DirectDatabaseQuery.DirectQuery`	Use of a direct database call is discouraged.	`includes/class-wawp-flow-builder.php:201:17`	Security

16 total row(s)


12.01.2026, 07:30:28	24s	95	4	12
15.11.2025, 12:49:19	1m 21s	1	3711	1529

Wawp – Order Notifications, OTP Verification, Advanced Country Code, and Chat widget for WooCommerce

Security14

Plugin Repository2

includes/class-wawp-connector.php5 issues in this fileTotal: 5Errors: 3Warnings: 2

includes/class-wawp-flow-builder.php5 issues in this fileTotal: 5Warnings: 5

includes/class-wawp-instances.php2 issues in this fileTotal: 2Warnings: 2

includes/class-wawp-countrycode.php1 issue in this fileTotal: 1Errors: 1

class-wawp.php1 issue in this fileTotal: 1Warnings: 1

includes/class-wawp-signup.php1 issue in this fileTotal: 1Warnings: 1

readme.txt1 issue in this fileTotal: 1Warnings: 1