← Back to Leaderboard
Insert Headers and Footers, executes PHP code, uses conditional logic to insert ads, text, media content and external service’s code.
4
Score
814
Errors
176
Warnings
70K
Installs
Security624
General254
Repo82
Performance30
Accessibility0
Top Issues by Category
Issues organized by category, type, and rule family
Issues Details
990 issues found in latest scan
| Code | Message | Location | Category | |
|---|---|---|---|---|
| ERROR | WordPress.Security.EscapeOutput.ExceptionNotEscaped | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$this'. | 323:93 | Security |
| ERROR | WordPress.Security.EscapeOutput.OutputNotEscaped | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'. | 63:34 | Security |
| ERROR | WordPress.Security.EscapeOutput.UnsafePrintingFunction | All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'. | 64:26 | Security |
| ERROR | WordPress.Security.EscapeOutput.OutputNotEscaped | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$dir'. | 65:51 | Security |
| ERROR | WordPress.Security.EscapeOutput.OutputNotEscaped | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$dir'. | 65:104 | Security |
| ERROR | WordPress.WP.I18n.MissingTranslatorsComment | A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders. | 74:34 | General |
| ERROR | WordPress.Security.EscapeOutput.OutputNotEscaped | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'. | 74:34 | Security |
| ERROR | WordPress.Security.EscapeOutput.OutputNotEscaped | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$dir'. | 74:147 | Security |
| ERROR | WordPress.Security.EscapeOutput.UnsafePrintingFunction | All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'. | 75:26 | Security |
| ERROR | WordPress.Security.EscapeOutput.OutputNotEscaped | All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$dir'. | 76:40 | Security |
990 total row(s)
Scan History
1 scan recorded
| 13.11.2025, 00:17:44 | 45s | 4 | 814 | 176 |
1 total row(s)
Report an issue
Tell us if something in this report looks wrong or if you need a deeper audit for Woody code snippets – Insert Header Footer Code, AdSense Ads. We read every submission and typically reply within a day.