WhatsApp, Facebook and Instagram help you reach more customers and drive sales with the official Meta for WooCommerce plugin.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Maintainability
177
14 issue groups
Security
71
4 issue groups
Performance
2
1 issue group
I18n
1
1 issue group
WARNINGMaintainabilityNon Prefixed Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "fbe_webhook".100
- Category
- Maintainability
- Occurrences
- 100
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "fbe_webhook".
ERRORSecurityException Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"Could not open temp file for writing: {$temp_file_path}"'.52
- Category
- Security
- Occurrences
- 52
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"Could not open temp file for writing: {$temp_file_path}"'.
WARNINGMaintainabilityDynamic Hookname FoundHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "AbstractFeed::FEED_GEN_COMPLETE_ACTION . $this->feed_name".17
- Category
- Maintainability
- Occurrences
- 17
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "AbstractFeed::FEED_GEN_COMPLETE_ACTION . $this->feed_name".
WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_COOKIE['_fbp']16
- Category
- Security
- Occurrences
- 16
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_COOKIE['_fbp']
WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.15
- Category
- Maintainability
- Occurrences
- 15
- Severity
- warning
Sample message
Use of a direct database call is discouraged.
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().14
- Category
- Maintainability
- Occurrences
- 14
- Severity
- warning
Sample message
Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().
WARNINGMaintainabilityNon Prefixed Class FoundClasses declared by a theme/plugin should start with the theme/plugin prefix. Found: "WC_Facebook_Loader".13
- Category
- Maintainability
- Occurrences
- 13
- Severity
- warning
Sample message
Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "WC_Facebook_Loader".
ERRORMaintainabilitywp function not compatible with requires wpFunction "str_contains()" requires WordPress 5.9.0, but your plugin minimum supported version is WordPress 5.6.0.4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- error
Sample message
Function "str_contains()" requires WordPress 5.9.0, but your plugin minimum supported version is WordPress 5.6.0.
WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$$superglobal".3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$$superglobal".
ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
Show 11 moreShow less
ERRORMaintainabilityNot Allowed2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- error
Sample message
Use of heredoc syntax (<<<) is not allowed; use standard strings or inline HTML instead
ERRORSecurityOutput Not Escaped2
- Category
- Security
- Occurrences
- 2
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'wc_help_tip'.
WARNINGPerformancePost Not In post not in2
- Category
- Performance
- Occurrences
- 2
- Severity
- warning
Sample message
Using exclusionary parameters, like post__not_in, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.
WARNINGMaintainabilityupdate modification detected2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
Plugin Updater detected. Detected code which may be altering WordPress update routines. Detected: _site_transient_update_plugins
WARNINGI18nload plugin textdomain Found1
- Category
- I18n
- Occurrences
- 1
- Severity
- warning
Sample message
load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.
WARNINGSecurityUnescaped DBParameter1
- Category
- Security
- Occurrences
- 1
- Severity
- warning
Sample message
Unescaped parameter $query used in $wpdb->get_col()\n$query assigned unsafely at line 596.
WARNINGMaintainabilitymissing composer json file1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
The "/vendor" directory using composer exists, but "composer.json" file is missing.
ERRORRepo Complianceplugin header no license1
- Category
- Repo Compliance
- Occurrences
- 1
- Severity
- error
Sample message
Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.
ERRORMaintainabilityplugin updater detected1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Plugin Updater detected. These are not permitted in WordPress.org hosted plugins. Detected: site_transient_update_plugins
ERRORMaintainabilitystable tag mismatch1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Mismatched Stable Tag: 3.7.0 != 3.7.1. Your Stable Tag is meant to be the stable version of your plugin and it needs to be exactly the same with the Version in your main plugin file's header. Any mismatch can prevent users from downloading the correct plugin files from WordPress.org.
WARNINGMaintainabilitytrademarked term1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
The plugin slug includes a restricted term. Your plugin slug - "facebook-for-woocommerce" - contains the restricted term "facebook" which cannot be used at all in your plugin slug.
Score History
First score snapshot
v3.7.1
34
Latest
- Findings
- 252
- Errors
- 66
- Warnings
- 186
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 34 | 252 | 66 | 186 | v3.7.1 | 2.0.0 |
Related Plugins
2k+ active installs
4k+ active installs
7k+ active installs
2k+ active installs
30k+ active installs
10k+ active installs