Admin UI for creating custom content types like post types and taxonomies
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Security
32
4 issue groups
Maintainability
7
4 issue groups
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$ui'.15
- Category
- Security
- Occurrences
- 15
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$ui'.
WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.11
- Category
- Security
- Occurrences
- 11
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGSecurityRequest data is not unslashed$_GET['action'] not unslashed before sanitization. Use wp_unslash() or similar5
- Category
- Security
- Occurrences
- 5
- Severity
- warning
Sample message
$_GET['action'] not unslashed before sanitization. Use wp_unslash() or similar
WARNINGMaintainabilityNon-prefixed functionFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "disp_boolean".3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "disp_boolean".
WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "wpml_translate_single_string".2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "wpml_translate_single_string".
WARNINGMaintainabilityNon-prefixed constantGlobal constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "CPT_VERSION".1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "CPT_VERSION".
WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_GET['cptui-dismiss-nonce']1
- Category
- Security
- Occurrences
- 1
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_GET['cptui-dismiss-nonce']
ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
External Connections
Not analyzed yet.
Score History
First score snapshot
v1.19.2
53
Latest
- Findings
- 39
- Errors
- 16
- Warnings
- 23
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 53 | 39 | 16 | 23 | v1.19.2 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.
Relationship links
Author
Category
Issue
Related
Author
Category
Issue
Related
Related Plugins
2k+ active installs
20k+ active installs
10k+ active installs
3k+ active installs
3k+ active installs
1k+ active installs