Name: Subscribe2 – Form, Email Subscribers & Newsletters
Rating: 3.5
Author: weDevs

Top Issues by File

Files with the highest concentration of issues in the latest scan

Issues Details

412 issues found in latest scan

	Code	Message	Location	Category
ERROR	`plugin_header_no_license`	Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.	`subscribe2.php`	Plugin Repo
ERROR	`WordPress.Security.EscapeOutput.OutputNotEscaped`	All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'wp_nonce_field'.	`admin/subscribers.php:228:6`	Security
ERROR	`PluginCheck.CodeAnalysis.EnqueuedResourceOffloading.OffloadedContent`	Found call to wp_enqueue_style() with external resource. Offloading styles to your servers or any remote service is disallowed.	`classes/class-s2-admin.php:253:38`	—
ERROR	`hidden_files`	Hidden files are not permitted.	`.gitignore`	Plugin Repo
WARNING	`WordPress.Security.ValidatedSanitizedInput.MissingUnslash`	$_POST['addresses'] not unslashed before sanitization. Use wp_unslash() or similar	`admin/subscribers.php:42:37`	Security
WARNING	`WordPress.Security.ValidatedSanitizedInput.InputNotSanitized`	Detected usage of a non-sanitized input variable: $_POST['addresses']	`admin/subscribers.php:42:37`	Security
WARNING	`WordPress.Security.ValidatedSanitizedInput.InputNotValidated`	Detected usage of a possibly undefined superglobal array index: $_POST['reminderemails']. Use isset() or empty() to check the index exists before using it	`admin/subscribers.php:95:18`	Security
WARNING	`WordPress.Security.ValidatedSanitizedInput.MissingUnslash`	$_POST['reminderemails'] not unslashed before sanitization. Use wp_unslash() or similar	`admin/subscribers.php:95:18`	Security
WARNING	`WordPress.Security.ValidatedSanitizedInput.InputNotSanitized`	Detected usage of a non-sanitized input variable: $_POST['reminderemails']	`admin/subscribers.php:95:18`	Security
WARNING	`WordPress.Security.ValidatedSanitizedInput.MissingUnslash`	$_POST['format'] not unslashed before sanitization. Use wp_unslash() or similar	`admin/subscribers.php:114:64`	Security

412 total row(s)


29.12.2025, 06:30:25	20s	28	4	408
13.11.2025, 09:49:27	28s	27	4	415

Subscribe2 – Form, Email Subscribers & Newsletters

Security395

Performance10

Plugin Repository2

General1

classes/class-s2-core.php81 issues in this fileTotal: 81Warnings: 81

classes/class-s2-admin.php61 issues in this fileTotal: 61Errors: 1Warnings: 60

classes/class-s2-list-table.php44 issues in this fileTotal: 44Warnings: 44

traits/ShortcodeTrait.php39 issues in this fileTotal: 39Warnings: 39

admin/send-email.php30 issues in this fileTotal: 30Warnings: 30

classes/class-s2-forms.php25 issues in this fileTotal: 25Warnings: 25

classes/class-s2-upgrade.php24 issues in this fileTotal: 24Warnings: 24

admin/settings.php23 issues in this fileTotal: 23Warnings: 23

classes/class-s2-uninstall.php15 issues in this fileTotal: 15Warnings: 15

uninstall.php15 issues in this fileTotal: 15Warnings: 15