Manage your Crowdsignal polls, surveys, quizzes, and ratings directly from the WordPress dashboard.
Category Scores
Issues to Review
Prioritized issue groups from the latest Plugin Check scan
Security
701
7 issue groups
Maintainability
268
18 issue groups
ERRORSecurityUnsafe Printing FunctionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.249
- Category
- Security
- Occurrences
- 249
- Severity
- error
Sample message
All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
ERRORSecurityOutput Not EscapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<option value='$i' "'.146
- Category
- Security
- Occurrences
- 146
- Severity
- error
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<option value='$i' "'.
WARNINGMaintainabilityNon Prefixed Variable FoundGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$a".139
- Category
- Maintainability
- Occurrences
- 139
- Severity
- warning
Sample message
Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$a".
WARNINGSecurityInput Not SanitizedDetected usage of a non-sanitized input variable: $_GET['action']90
- Category
- Security
- Occurrences
- 90
- Severity
- warning
Sample message
Detected usage of a non-sanitized input variable: $_GET['action']
WARNINGSecurityMissing Unslash$_GET['action'] not unslashed before sanitization. Use wp_unslash() or similar90
- Category
- Security
- Occurrences
- 90
- Severity
- warning
Sample message
$_GET['action'] not unslashed before sanitization. Use wp_unslash() or similar
WARNINGSecurityInput Not ValidatedDetected usage of a possibly undefined superglobal array index: $_GET['closed']. Check that the array index exists before using it.59
- Category
- Security
- Occurrences
- 59
- Severity
- warning
Sample message
Detected usage of a possibly undefined superglobal array index: $_GET['closed']. Check that the array index exists before using it.
WARNINGSecurityRecommendedProcessing form data without nonce verification.43
- Category
- Security
- Occurrences
- 43
- Severity
- warning
Sample message
Processing form data without nonce verification.
WARNINGSecurityMissingProcessing form data without nonce verification.24
- Category
- Security
- Occurrences
- 24
- Severity
- warning
Sample message
Processing form data without nonce verification.
ERRORMaintainabilitybadly named filesFile and folder names must not contain spaces or special characters.22
- Category
- Maintainability
- Occurrences
- 22
- Severity
- error
Sample message
File and folder names must not contain spaces or special characters.
WARNINGMaintainabilityNon Prefixed Function FoundFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_polldaddy_account_defaults".17
- Category
- Maintainability
- Occurrences
- 17
- Severity
- warning
Sample message
Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "_polldaddy_account_defaults".
Show 15 moreShow less
ERRORMaintainabilityOffloaded Content15
- Category
- Maintainability
- Occurrences
- 15
- Severity
- error
Sample message
Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.
ERRORMaintainabilitymissing direct file access protection14
- Category
- Maintainability
- Occurrences
- 14
- Severity
- error
Sample message
PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;
ERRORMaintainabilityNot Allowed10
- Category
- Maintainability
- Occurrences
- 10
- Severity
- error
Sample message
Use of heredoc syntax (<<<) is not allowed; use standard strings or inline HTML instead
WARNINGMaintainabilityNon Prefixed Class Found8
- Category
- Maintainability
- Occurrences
- 8
- Severity
- warning
Sample message
Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "Custom_Pack".
WARNINGMaintainabilityNot In Footer8
- Category
- Maintainability
- Occurrences
- 8
- Severity
- warning
Sample message
In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.
ERRORMaintainabilityNon Enqueued Script6
- Category
- Maintainability
- Occurrences
- 6
- Severity
- error
Sample message
Scripts must be registered/enqueued via wp_enqueue_script()
ERRORMaintainabilitystrip tags strip tags5
- Category
- Maintainability
- Occurrences
- 5
- Severity
- error
Sample message
strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.
WARNINGMaintainabilityNon Prefixed Constant Found4
- Category
- Maintainability
- Occurrences
- 4
- Severity
- warning
Sample message
Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "WP_POLLDADDY__CLASS".
ERRORMaintainabilitydate date3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.
WARNINGMaintainabilityNon Prefixed Hookname Found3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- warning
Sample message
Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "the_title".
ERRORMaintainabilityfile system operations fclose3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().
ERRORMaintainabilityfile system operations fread3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fread().
ERRORMaintainabilityfile system operations fsockopen3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fsockopen().
ERRORMaintainabilityfile system operations fwrite3
- Category
- Maintainability
- Occurrences
- 3
- Severity
- error
Sample message
File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().
ERRORMaintainabilityparse url parse url2
- Category
- Maintainability
- Occurrences
- 2
- Severity
- error
Sample message
parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.
Score History
First score snapshot
v3.1.6
26
Latest
- Findings
- 975
- Errors
- 486
- Warnings
- 489
- Check
- 2.0.0
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 26 | 975 | 486 | 489 | v3.1.6 | 2.0.0 |
Related Plugins
200k+ active installs
6k+ active installs
2k+ active installs
2k+ active installs
2k+ active installs
1k+ active installs