Duplicate post, Duplicate page and Duplicate custom post or clone page and clone post.
| Code | Message | Location | Category | |
|---|---|---|---|---|
| ERROR | WordPress.Security.EscapeOutput.UnsafePrintingFunction | All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'. | 5:15 | Security |
| ERROR | WordPress.WP.I18n.TextDomainMismatch | Mismatched text domain. Expected 'duplicate-wp-page-post' but got 'dpp_wpp_page'. | 59:102 | General |
| ERROR | PluginCheck.Security.DirectDB.UnescapedDBParameter | Unescaped parameter $sql_query used in $wpdb->query($sql_query)\n$sql_query assigned unsafely at line 142:\n $sql_query .= implode( " UNION ALL ", $sql_query_sel )\n$sql_query_sel assigned unsafely at line 140:\n $sql_query_sel[] = "SELECT $new_post_id, '$meta_key', '$meta_value'"\n$new_post_id assigned unsafely at line 122:\n $new_post_id = wp_insert_post( $args )\n$meta_key assigned unsafely at line 138:\n $meta_key = sanitize_text_field( $meta_info->meta_key )\nNote: sanitize_text_field() is not a safe escaping function.\n$meta_value assigned unsafely at line 139:\n $meta_value = addslashes( $meta_info->meta_value )\nNote: addslashes() is not a safe escaping function.\n$args assigned unsafely at line 106:\n $args = array(\r\n\t\t\t\t\t\t'comment_status' => $post->comment_status,\r\n\t\t\t\t\t\t'ping_status' => $post->ping_status,\r\n\t\t\t\t\t\t'post_author' => $new_post_author,\r\n\t\t\t\t\t\t'post_content' => ( isset( $opt['dpp_posteditor'] ) && $opt['dpp_posteditor'] == 'gutenberg' ) ? wp_slash( $post->post_content ) : $post->post_content,\r\n\t\t\t\t\t\t'post_excerpt' => $post->post_excerpt,\r\n\t\t\t\t\t\t//'post_name' => $post->post_name,\r\n\t\t\t\t\t\t'post_parent' => $post->post_parent,\r\n\t\t\t\t\t\t'post_password' => $post->post_password,\r\n\t\t\t\t\t\t'post_status' => $post_status,\r\n\t\t\t\t\t\t'post_title' => $post->post_title . $suffix,\r\n\t\t\t\t\t\t'post_type' => $post->post_type,\r\n\t\t\t\t\t\t'to_ping' => $post->to_ping,\r\n\t\t\t\t\t\t'menu_order' => $post->menu_order\r\n\r\n\t\t\t\t\t)\n$meta_info->meta_key used without escaping.\n$meta_info->meta_value used without escaping.\n$post->post_content used without escaping. | 143:14 | Security |
| ERROR | textdomain_invalid_format | The "Text Domain" header in the plugin file should only contain lowercase letters, numbers, and hyphens. Found "dpp_wpp_page". | — | Plugin Repo |
| ERROR | WordPress.DB.PreparedSQL.NotPrepared | Use placeholders and $wpdb->prepare(); found $sql_query | 143:21 | Security |
| ERROR | WordPress.WP.I18n.TextDomainMismatch | Mismatched text domain. Expected 'duplicate-wp-page-post' but got 'dpp_wpp_page'. | 59:62 | General |
| ERROR | WordPress.Security.EscapeOutput.UnsafePrintingFunction | All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'. | 12:9 | Security |
| ERROR | WordPress.Security.EscapeOutput.OutputNotEscaped | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$post_id'. | 155:63 | Security |
| ERROR | WordPress.Security.EscapeOutput.UnsafePrintingFunction | All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'. | 27:9 | Security |
| ERROR | WordPress.Security.EscapeOutput.UnsafePrintingFunction | All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'. | 34:9 | Security |
| 11/12/2025, 10:20:24 PM | 9s | 86 | 25 | 21 |