Name: Import WP – Export and Import CSV and XML files to WordPress
Rating: 4.4
Author: jcollings

Top Issues by File

Files with the highest concentration of issues in the latest scan

Issues Details

794 issues found in latest scan

	Code	Message	Location	Category
ERROR	`WordPress.Security.EscapeOutput.ExceptionNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.	`class/Common/Util/Util.php:176:42`	Security
ERROR	`WordPress.WP.I18n.MissingTranslatorsComment`	A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.	`class/Common/Importer/Template/PostTemplate.php:86:33`	General
ERROR	`WordPress.DB.PreparedSQLPlaceholders.QuotedSimplePlaceholder`	Simple placeholders should not be quoted in the query string in $wpdb->prepare(). Found: '%s'.	`class/Common/Model/ExporterModel.php:137:54`	Security
ERROR	`WordPress.DateTime.RestrictedFunctions.date_date`	date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.	`class/Common/Model/ExporterModel.php:397:54`	—
ERROR	`WordPress.DateTime.RestrictedFunctions.date_date`	date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.	`class/Common/Model/ImporterModel.php:214:67`	—
ERROR	`WordPress.DateTime.RestrictedFunctions.date_date`	date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.	`class/Common/Model/ImporterModel.php:219:46`	—
ERROR	`WordPress.WP.I18n.MissingTranslatorsComment`	A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.	`class/Common/Importer/Template/PostTemplate.php:211:42`	General
ERROR	`WordPress.Security.EscapeOutput.ExceptionNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$file'.	`class/Common/Util/Util.php:176:96`	Security
ERROR	`WordPress.DB.PreparedSQLPlaceholders.QuotedSimplePlaceholder`	Simple placeholders should not be quoted in the query string in $wpdb->prepare(). Found: '%s'.	`class/Common/Model/ImporterModel.php:258:54`	Security
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound`	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "iwp/importer/datasource/allowed_file_types".	`class/Common/Model/ImporterModel.php:348:45`	Plugin Repo

794 total row(s)


15.01.2026, 21:32:19	1m 20s	12	588	206
17.12.2025, 22:33:07	1m 34s	12	589	206
14.11.2025, 06:41:12	1m 58s	12	588	206

Import WP – Export and Import CSV and XML files to WordPress

Security428

Plugin Repository239

General67

Performance21

class/Common/Migration/Migrations.php59 issues in this fileTotal: 59Errors: 8Warnings: 51

class/Common/Rest/RestManager.php42 issues in this fileTotal: 42Errors: 29Warnings: 13

libs/phpseclib/phpseclib/phpseclib/Net/SFTP.php37 issues in this fileTotal: 37Errors: 37

class/Common/Importer/ImporterManager.php37 issues in this fileTotal: 37Errors: 34Warnings: 3

libs/phpseclib/phpseclib/phpseclib/Net/SSH2.php29 issues in this fileTotal: 29Errors: 28Warnings: 1

uninstall.php26 issues in this fileTotal: 26Errors: 11Warnings: 15

class/Common/Util/Util.php24 issues in this fileTotal: 24Errors: 22Warnings: 2

class/Common/Importer/Mapper/UserMapper.php23 issues in this fileTotal: 23Errors: 21Warnings: 2

class/Common/Runner/RunnerState.php19 issues in this fileTotal: 19Errors: 10Warnings: 9

setup-iwp.php16 issues in this fileTotal: 16Errors: 16