| Code | Message | Location | Category | |
|---|---|---|---|---|
| ERROR | PluginCheck.Security.DirectDB.UnescapedDBParameter | Unescaped parameter $title used in $wpdb->get_var("SELECT slug FROM {$wpdb->terms} WHERE name = '$title'")\n$title used without escaping. | 53:28 | Security |
| ERROR | outdated_tested_upto_header | Tested up to: 5.4 < 6.8. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress. | — | Plugin Repo |
| WARNING | WordPress.PHP.DevelopmentFunctions.error_log_debug_backtrace | debug_backtrace() found. Debug code should not normally be used in production. | 43:15 | — |
| WARNING | WordPress.DB.DirectDatabaseQuery.DirectQuery | Use of a direct database call is discouraged. | 53:24 | Security |
| WARNING | WordPress.DB.DirectDatabaseQuery.NoCaching | Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete(). | 53:24 | Security |
| WARNING | WordPress.DB.PreparedSQL.InterpolatedNotPrepared | Use placeholders and $wpdb->prepare(); found interpolated variable $title at "SELECT slug FROM {$wpdb->terms} WHERE name = '$title'" | 53:36 | Security |
| WARNING | WordPress.DB.DirectDatabaseQuery.DirectQuery | Use of a direct database call is discouraged. | 77:14 | Security |
| WARNING | WordPress.DB.DirectDatabaseQuery.NoCaching | Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete(). | 77:14 | Security |
| WARNING | WordPress.DB.DirectDatabaseQuery.DirectQuery | Use of a direct database call is discouraged. | 82:13 | Security |
| WARNING | WordPress.DB.DirectDatabaseQuery.NoCaching | Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete(). | 82:13 | Security |
| 11/14/2025, 3:17:31 AM | 10s | 95 | 2 | 13 |