Name: Media File Rename, Unused File Cleaner & CSV Export Import – Add Alt for Image SEO – Media Library Tools
Rating: 4.7
Author: Tiny Solutions

Top Issues by File

Files with the highest concentration of issues in the latest scan

Issues Details

118 issues found in latest scan

	Code	Message	Location	Category
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found $query	`app/Controllers/Admin/Api.php:1017:40`	Security
ERROR	`five_star_reviews_detected`	Linking directly to 5 stars reviews is not allowed.	`app/Controllers/Notice/Review.php:162:21`	Plugin Repo
ERROR	`PluginCheck.CodeAnalysis.DiscouragedFunctions.load_plugin_textdomainFound`	load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.	`app/Tsmlt.php:100:4`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound`	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "wpml_element_language_details".	`app/Helpers/Fns.php:108:32`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound`	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "wpml_get_element_translations".	`app/Helpers/Fns.php:110:44`	Plugin Repo
ERROR	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $query used in $wpdb->get_col($query)\n$query assigned unsafely at line 235:\n $query = $wpdb->prepare(\n\t\t\t"SELECT m.post_id FROM {$table_meta} AS m\n\t\tJOIN {$table_posts} AS p ON m.post_id = p.ID\n\t\tWHERE m.meta_key = '_elementor_data'\n\t\tAND m.meta_value LIKE %s\n\t\tAND {$useless_types_conditions}",\n\t\t\t$searchValue\n\t\t)\n$useless_types_conditions assigned unsafely at line 230:\n $useless_types_conditions = self::$useless_types_conditions	`app/Helpers/Fns.php:243:17`	Security
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found $query	`app/Helpers/Fns.php:243:26`	Security
ERROR	`PluginCheck.CodeAnalysis.Offloading.OffloadedContent`	Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.	`app/Controllers/Admin/SubMenu.php:294:1`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'tsmlt'.	`app/Controllers/Admin/SubMenu.php:334:75`	Security
ERROR	`WordPress.DB.PreparedSQLPlaceholders.UnsupportedPlaceholder`	Unsupported placeholder used in $wpdb->prepare(). Found: "%Y-%m".	`app/Controllers/Admin/Api.php:337:33`	Security

118 total row(s)


25.11.2025, 18:00:17	12s	68	39	79
17.11.2025, 11:00:22	13s	68	42	79
15.11.2025, 13:05:48	18s	68	42	79

Media File Rename, Unused File Cleaner & CSV Export Import – Add Alt for Image SEO – Media Library Tools

Security100

Performance5

Plugin Repository2

app/Helpers/Fns.php62 issues in this fileTotal: 62Errors: 22Warnings: 40

app/Controllers/Admin/Api.php37 issues in this fileTotal: 37Errors: 8Warnings: 29

app/Controllers/Notice/Review.php5 issues in this fileTotal: 5Errors: 3Warnings: 2

app/Controllers/Admin/SubMenu.php4 issues in this fileTotal: 4Errors: 2Warnings: 2

app/Controllers/Hooks/FilterHooks.php3 issues in this fileTotal: 3Errors: 2Warnings: 1

app/Controllers/AssetsController.php2 issues in this fileTotal: 2Warnings: 2

app/Controllers/Dependencies.php1 issue in this fileTotal: 1Errors: 1

app/Tsmlt.php1 issue in this fileTotal: 1Errors: 1

app/Controllers/Hooks/Ajax.php1 issue in this fileTotal: 1Warnings: 1

composer.json1 issue in this fileTotal: 1Warnings: 1