Name: Solid Security – Password, Two Factor Authentication, and Brute Force Protection
Rating: 4.6
Author: StellarWP

Top Issues by File

Files with the highest concentration of issues in the latest scan

Issues Details

1787 issues found in latest scan

	Code	Message	Location	Category
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$pending_phrase'.	`core/lib/class-itsec-wp-list-table.php:648:17`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$pending_comments_number'.	`core/lib/class-itsec-wp-list-table.php:652:17`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.	`core/lib/class-itsec-wp-list-table.php:653:38`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.	`core/lib/class-itsec-wp-list-table.php:653:90`	Security
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found $id	`core/modules/user-groups/Repository/DB_Repository.php:49:4`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<response>{$_POST['expect']}:"'.	`core/modules/security-check-pro/utility.php:83:14`	Security
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$key".	`vendor-prod/stellarwp/telemetry/src/views/exit-interview.php:20:63`	Plugin Repo
ERROR	`WordPress.WP.I18n.MissingTranslatorsComment`	A function call to _n() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.	`core/lib/class-itsec-wp-list-table.php:727:62`	General
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found $this	`core/modules/user-groups/Repository/DB_Repository.php:54:23`	Security
ERROR	`WordPress.WP.I18n.MissingTranslatorsComment`	A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.	`core/modules/security-check-pro/utility.php:228:97`	General

1787 total row(s)


19.11.2025, 16:10:25	2m 30s	1	967	820
12.11.2025, 15:11:20	1m 59s	1	967	820

Solid Security – Password, Two Factor Authentication, and Brute Force Protection

Security1116

General357

Plugin Repository223

core/lib/class-itsec-wp-list-table.php123 issues in this fileTotal: 123Errors: 60Warnings: 63

core/lib/class-itsec-lib-login-interstitial.php85 issues in this fileTotal: 85Errors: 17Warnings: 68

core/lockout.php72 issues in this fileTotal: 72Errors: 36Warnings: 36

core/lib.php68 issues in this fileTotal: 68Errors: 27Warnings: 41

core/modules/dashboard/class-itsec-dashboard-util.php58 issues in this fileTotal: 58Errors: 26Warnings: 32

core/lib/validator.php45 issues in this fileTotal: 45Errors: 44Warnings: 1

core/modules/ban-users/Database_Repository.php41 issues in this fileTotal: 41Errors: 33Warnings: 8

core/modules/user-groups/Repository/DB_Repository.php40 issues in this fileTotal: 40Errors: 32Warnings: 8

core/modules/database-prefix/active.php39 issues in this fileTotal: 39Errors: 20Warnings: 19

core/admin-pages/logs-list-table.php39 issues in this fileTotal: 39Errors: 16Warnings: 23