| ERROR | license_mismatch | Your plugin has a different license declared in the readme file and plugin header. Please update your readme with a valid GPL license identifier. | readme.txt | Plugin Repo |
| ERROR | PluginCheck.CodeAnalysis.DiscouragedFunctions.load_plugin_textdomainFound | load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed. | real-time-auto-find-and-replace.php:189:4 | Plugin Repo |
| ERROR | PluginCheck.Security.DirectDB.UnescapedDBParameter | Unescaped parameter $con used in $wpdb->get_results($wpdb->prepare(\n\t\t\t\t"SELECT * FROM {$wpdb->posts} WHERE (guid like %s OR post_name like %s ) AND ( {$con} ) ",\n\t\t\t\t'%' . $wpdb->esc_like( $find ) . '%',\n\t\t\t\t'%' . $wpdb->esc_like( $find ) . '%'\n\t\t\t))\n$con assigned unsafely at line 504:\n $con = \\implode( ' OR ', $urlTypes )\n$urlTypes used without escaping. | core/admin/functions/DbReplacer.php:505:22 | Security |
| ERROR | PluginCheck.Security.DirectDB.UnescapedDBParameter | Unescaped parameter $search used in $wpdb->get_var("select count(id) as total from {$wpdb->prefix}rtafar_rules as c {$search} ")\n$search assigned unsafely at line 218:\n $search = \\str_replace( 'bfarPercent', '%', $search )\n$search assigned unsafely at line 214:\n $search = ''\n$skey assigned unsafely at line 216:\n $skey = Util::cs_esc_sql( $skey )\n$skey assigned unsafely at line 215:\n $skey = $_GET['s'\n$_GET['s'] used without escaping. | core/admin/options/functions/AllMaskingRulesList.php:246:27 | Security |
| ERROR | WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound | Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$RTAFAF". | real-time-auto-find-and-replace.php:215:5 | Plugin Repo |
| ERROR | WordPress.WP.EnqueuedResources.NonEnqueuedStylesheet | Stylesheets must be registered/enqueued via wp_enqueue_style() | core/admin/options/pages/AddNewRule.php:336:50 | Performance |
| ERROR | PluginCheck.Security.DirectDB.UnescapedDBParameter | Unescaped parameter $search used in $wpdb->get_results("SELECT * from {$wpdb->prefix}rtafar_rules as c "\n\t\t\t\t. "$search "\n\t\t\t\t. " order by {$order} limit $this->item_per_page offset {$offset}")\n$search assigned unsafely at line 218:\n $search = \\str_replace( 'bfarPercent', '%', $search )\n$search assigned unsafely at line 214:\n $search = ''\n$skey assigned unsafely at line 216:\n $skey = Util::cs_esc_sql( $skey )\n$skey assigned unsafely at line 215:\n $skey = $_GET['s'\n$_GET['s'] used without escaping. | core/admin/options/functions/AllMaskingRulesList.php:235:20 | Security |
| ERROR | WordPress.WP.EnqueuedResources.NonEnqueuedScript | Scripts must be registered/enqueued via wp_enqueue_script() | core/admin/options/pages/AddNewRule.php:401:50 | Performance |
| ERROR | WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound | Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "bfar_save_item_history". | core/admin/functions/DbReplacer.php:640:21 | Plugin Repo |
| ERROR | WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound | Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$rtafr_menu". | core/actions/RTAFAR_RegisterMenu.php:171:9 | Plugin Repo |