Name: Hostinger Reach – AI-Powered Email Marketing for WordPress
Rating: 0
Author: Hostinger

Top Issues by File

Files with the highest concentration of issues in the latest scan

Issues Details

31 issues found in latest scan

	Code	Message	Location	Category
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$is_opted_in".	`templates/optin-checkbox.php:20:5`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.UnsafePrintingFunction`	All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.	`templates/optin-checkbox.php:28:66`	Security
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$vendor_file".	`hostinger-reach.php:68:1`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$composer_autoload".	`hostinger-reach.php:69:1`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.ExceptionNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.	`src/Integrations/Integration.php:178:34`	Security
WARNING	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $sql used in $wpdb->get_results($sql)\n$sql assigned unsafely at line 225:\n $sql = "SELECT email, first_name FROM {$table}"\n$table assigned unsafely at line 224:\n $table = $wpdb->prefix . 'wc_customer_lookup'	`src/Integrations/WooCommerce/WooCommerceIntegration.php:248:20`	Security
WARNING	`WordPress.DB.DirectDatabaseQuery.DirectQuery`	Use of a direct database call is discouraged.	`src/Integrations/WooCommerce/WooCommerceIntegration.php:260:16`	Security
WARNING	`WordPress.DB.DirectDatabaseQuery.NoCaching`	Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().	`src/Integrations/WooCommerce/WooCommerceIntegration.php:260:16`	Security
WARNING	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $table used in $wpdb->get_var("SELECT COUNT(*) FROM {$table}")\n$table assigned unsafely at line 258:\n $table = $this->get_woocommerce_customer_table()	`src/Integrations/WooCommerce/WooCommerceIntegration.php:260:23`	Security
WARNING	`WordPress.DB.DirectDatabaseQuery.DirectQuery`	Use of a direct database call is discouraged.	`src/Integrations/WooCommerce/WooCommerceIntegration.php:298:25`	Security

31 total row(s)


11.12.2025, 08:01:09	17s	91	5	26
26.11.2025, 13:00:21	17s	94	5	16
12.11.2025, 17:09:59	18s	94	5	15

Hostinger Reach – AI-Powered Email Marketing for WordPress

Security25

Plugin Repository5

General1

src/Integrations/WooCommerce/WooCommerceIntegration.php10 issues in this fileTotal: 10Warnings: 10

templates/optin-checkbox.php3 issues in this fileTotal: 3Errors: 2Warnings: 1

src/Admin/Redirects.php3 issues in this fileTotal: 3Warnings: 3

src/Admin/Surveys/SatisfactionSurvey.php3 issues in this fileTotal: 3Warnings: 3

hostinger-reach.php2 issues in this fileTotal: 2Errors: 2

readme.txt2 issues in this fileTotal: 2Warnings: 2

src/Admin/Notices/ConnectionNotice.php2 issues in this fileTotal: 2Warnings: 2

src/Tracking/AbandonedCarts.php2 issues in this fileTotal: 2Warnings: 2

src/Integrations/Integration.php1 issue in this fileTotal: 1Errors: 1

src/Blocks/SubscriptionFormBlock.php1 issue in this fileTotal: 1Warnings: 1