Name: Quttera ThreatSign – Web Malware Scanner for WordPress
Rating: 3.9
Author: quttera

Top Issues by File

Files with the highest concentration of issues in the latest scan

Issues Details

284 issues found in latest scan

	Code	Message	Location	Category
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$line".	`Log.php:8:19`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$nonce'.	`JS/iscan_frontend.php:700:39`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$nonce'.	`JS/iscan_frontend.php:725:39`	Security
ERROR	`WordPress.WP.EnqueuedResources.NonEnqueuedScript`	Scripts must be registered/enqueued via wp_enqueue_script()	`JS/iscan_frontend.php:742:1`	Performance
ERROR	`PluginCheck.CodeAnalysis.Offloading.OffloadedContent`	Offloading images, js, css, and other scripts to your servers or any remote service is disallowed.	`JS/iscan_frontend.php:742:1`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$nonce".	`JS/escan_frontend.php:1:7`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$nonce'.	`JS/escan_frontend.php:136:39`	Security
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$nonce".	`JS/heur_iscan_frontend.php:1:7`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$nonce'.	`JS/heur_iscan_frontend.php:83:43`	Security
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$nonce'.	`JS/heur_iscan_frontend.php:98:43`	Security

284 total row(s)


23.12.2025, 00:30:16	12s	51	198	86
09.12.2025, 00:30:17	12s	51	198	86
25.11.2025, 10:00:28	12s	51	199	83
17.11.2025, 08:16:32	12s	51	199	83
13.11.2025, 15:30:04	16s	51	199	83

Quttera ThreatSign – Web Malware Scanner for WordPress

Security135

Plugin Repository99

General35

Performance7

qtrAjaxHandler.php82 issues in this fileTotal: 82Errors: 28Warnings: 54

quttera_wm_scanner.php54 issues in this fileTotal: 54Errors: 37Warnings: 17

JS/heur_iscan_frontend.php20 issues in this fileTotal: 20Errors: 20

JS/iscan_frontend.php20 issues in this fileTotal: 20Errors: 20

qtrFilesScannerTest.php13 issues in this fileTotal: 13Errors: 12Warnings: 1

qtrOptions.php10 issues in this fileTotal: 10Errors: 10

qtrFilesScanner.php10 issues in this fileTotal: 10Warnings: 10

qtrLogger.php9 issues in this fileTotal: 9Errors: 9

qtrUtils.php9 issues in this fileTotal: 9Errors: 9

qtrFsSnapShot.php7 issues in this fileTotal: 7Errors: 7