Effortlessly migrate, clone, or transfer your WordPress site to over 5,000 web hosts with Migrate Guru, trusted by Cloudways, Pantheon, and Dreamhost.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Maintainability
9
6 issue groups
Security
6
3 issue groups
WARNINGSecurityDatabase parameter is not escapedUnescaped parameter $query used in $wpdb->get_col()\n$query used without escaping.4
- Category
- Security
- Occurrences
- 4
- Severity
- warning
Sample message
Unescaped parameter $query used in $wpdb->get_col()\n$query used without escaping.
ERRORMaintainabilitywp function not compatible with requires wpFunction "get_main_site_id()" requires WordPress 4.9.0, but your plugin minimum supported version is WordPress 4.0.0.3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
Function "get_main_site_id()" requires WordPress 4.9.0, but your plugin minimum supported version is WordPress 4.0.0.
WARNINGMaintainabilityMissing VersionResource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- warning
Sample message
Resource version not set in call to wp_enqueue_style(). This means new versions of the style may not always be loaded due to browser caching.
ERRORMaintainabilityForbidden PHP function foundThe use of function move_uploaded_file() is forbidden1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
The use of function move_uploaded_file() is forbidden
WARNINGMaintainabilityprevent path disclosure phpinfophpinfo() can lead to full path disclosure.1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- warning
Sample message
phpinfo() can lead to full path disclosure.
ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$this'.1
- Category
- Security
- Occurrences
- 1
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$this'.
WARNINGSecuritywp redirect wp redirectwp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.1
- Category
- Security
- Occurrences
- 1
- Severity
- warning
Sample message
wp_redirect() found. Using wp_safe_redirect(), along with the "allowed_redirect_hosts" filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.
ERRORMaintainabilityfive star reviews detectedLinking directly to 5 stars reviews is not allowed.1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
Linking directly to 5 stars reviews is not allowed.
ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;1
- Category
- Maintainability
- Occurrences
- 1
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
External Connections
Not analyzed yet.
Score History
First score snapshot
v6.28
81
Latest
- Findings
- 15
- Errors
- 7
- Warnings
- 8
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 81 | 15 | 7 | 8 | v6.28 | 2.0.0 |
Relationship Map
Author, categories, issues, domains, and nearby plugins.
Relationship links
Author
Issue
Related
Author
Issue
Related
Related Plugins
600 active installs
900 active installs
900 active installs
7k+ active installs
1k+ active installs
3k+ active installs