PluginScore

Hostinger Reach – AI-Powered Email Marketing for WordPress

Launch and grow your email marketing effortlessly with Hostinger Reach. Collect contacts, sync subscribers, and send emails – all in one, AI powered.

v1.5.2HostingerUpdated Added 1m+ installs100% rating
Email Marketinglead generationmarketingnewslettersubscription
40
Score
9
Errors
46
Warnings
+0
Change

Category Scores

Security0
Repo89
Performance100
Maintainability81

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

55 findings

Security

29

9 issue groups

Maintainability

24

10 issue groups

Repo Compliance

2

2 issue groups

WARNINGMaintainabilityDirect QueryUse of a direct database call is discouraged.7
Category
Maintainability
Occurrences
7
Severity
warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery
WARNINGMaintainabilityNo CachingDirect database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().7
Category
Maintainability
Occurrences
7
Severity
warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching
WARNINGSecurityMissing Unslash$_GET['platform'] not unslashed before sanitization. Use wp_unslash() or similar7
Category
Security
Occurrences
7
Severity
warning

Sample message

$_GET['platform'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash
WARNINGSecurityMissingProcessing form data without nonce verification.6
Category
Security
Occurrences
6
Severity
warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing
WARNINGSecurityInput Not ValidatedDetected usage of a possibly undefined superglobal array index: $_POST['choice']. Check that the array index exists before using it.4
Category
Security
Occurrences
4
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST['choice']. Check that the array index exists before using it.

WordPress.Security.ValidatedSanitizedInput.InputNotValidated
WARNINGSecurityUnescaped DBParameterUnescaped parameter $sql used in $wpdb->get_results()\n$sql assigned unsafely at line 225.3
Category
Security
Occurrences
3
Severity
warning

Sample message

Unescaped parameter $sql used in $wpdb->get_results()\n$sql assigned unsafely at line 225.

PluginCheck.Security.DirectDB.UnescapedDBParameter
WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$composer_autoload".3
Category
Maintainability
Occurrences
3
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$composer_autoload".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound
WARNINGSecurityRecommendedProcessing form data without nonce verification.3
Category
Security
Occurrences
3
Severity
warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended
ERRORSecurityUnsupported Identifier PlaceholderThe %i modifier is only supported in WP 6.2 or higher. Found: "%i".2
Category
Security
Occurrences
2
Severity
error

Sample message

The %i modifier is only supported in WP 6.2 or higher. Found: "%i".

WordPress.DB.PreparedSQLPlaceholders.UnsupportedIdentifierPlaceholder
WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_POST['actions']2
Category
Security
Occurrences
2
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_POST['actions']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized
Show 11 more
WARNINGMaintainabilityslow db query meta query1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Detected usage of meta_query, possible slow query.

WordPress.DB.SlowDBQuery.slow_db_query_meta_query
WARNINGMaintainabilityDynamic Hookname Found1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "self::START_HOOK_JOB_NAME".

WordPress.NamingConventions.PrefixAllGlobals.DynamicHooknameFound
ERRORSecurityException Not Escaped1
Category
Security
Occurrences
1
Severity
error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.

WordPress.Security.EscapeOutput.ExceptionNotEscapedReference
ERRORSecurityUnsafe Printing Function1
Category
Security
Occurrences
1
Severity
error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunctionReference
ERRORMaintainabilityparse url parse url1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.

WordPress.WP.AlternativeFunctions.parse_url_parse_url
ERRORMaintainabilityblock api version too low1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

Editor blocks must define "apiVersion" 3 or higher in block.json for WordPress 7.0+ iframe editor compatibility.

block_api_version_too_lowReference
WARNINGMaintainabilitymismatched plugin name1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Plugin name "Hostinger Reach - AI-Powered Email Marketing for WordPress" is different from the name declared in plugin header "Hostinger Reach".

mismatched_plugin_nameReference
ERRORMaintainabilitymissing direct file access protection1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protectionReference
ERRORRepo Complianceoutdated tested upto header1
Category
Repo Compliance
Occurrences
1
Severity
error

Sample message

Tested up to: 6.9 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

outdated_tested_upto_headerReference
ERRORRepo Compliancereadme mismatched header requires php1
Category
Repo Compliance
Occurrences
1
Severity
error

Sample message

Mismatched Requires PHP: 8.0 != 8.1. "Requires PHP" needs to be exactly the same with that in your main plugin file's header.

readme_mismatched_header_requires_phpReference
WARNINGMaintainabilitytrademarked term1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

The plugin name includes a restricted term. Your chosen plugin name - "Hostinger Reach - AI-Powered Email Marketing for WordPress" - contains the restricted term "wordpress" which cannot be used at all in your plugin name.

trademarked_term

Score History

First score snapshot

v1.5.2

40

Latest

Findings
55
Errors
9
Warnings
46
Check
2.0.0

Related Plugins

GetResponse Official

4k+ active installs

100
WS Form LITE – Drag & Drop Contact Form Builder

10k+ active installs

100
Advanced Popups

60k+ active installs

99
WebToffee eCommerce Marketing Automation – Email marketing, Popups, Email customizer

10k+ active installs

98
HubSpot All-In-One Marketing – Forms, Popups, Live Chat

200k+ active installs

97
Elastic Email Sender

10k+ active installs

96