Name: BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net
Rating: 4.7
Author: RealMag777

Issues Details

1100 issues found in latest scan

	Code	Message	Location	Category
ERROR	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $addtn_query used in $wpdb->get_results("\r\n\t\t\t\t\t\tSELECT posts.ID\r\n\t\t\t\t\t\tFROM $wpdb->posts AS posts\r\n\t\t\t\t\t\tLEFT JOIN $wpdb->postmeta AS postmeta ON ( posts.ID = postmeta.post_id )\r\n\t\t\t\t\t\tWHERE posts.post_type IN ('product','product_variation')\r\n\t\t\t\t\t\tAND postmeta.meta_key = '_sale_price'\r\n\t\t\t\t\t\tAND ( postmeta.meta_value = $woobe_sale_from $addtn_query )")\n$addtn_query assigned unsafely at line 571:\n $addtn_query = ' OR postmeta.meta_value = null'\n$addtn_query assigned unsafely at line 569:\n $addtn_query = ''\n$product_variations assigned unsafely at line 573:\n $product_variations = $wpdb->get_results("\r\n\t\t\t\t\t\tSELECT posts.ID\r\n\t\t\t\t\t\tFROM $wpdb->posts AS posts\r\n\t\t\t\t\t\tLEFT JOIN $wpdb->postmeta AS postmeta ON ( posts.ID = postmeta.post_id )\r\n\t\t\t\t\t\tWHERE posts.post_type IN ('product','product_variation')\r\n\t\t\t\t\t\tAND postmeta.meta_key = '_sale_price'\r\n\t\t\t\t\t\tAND ( postmeta.meta_value = $woobe_sale_from $addtn_query )", ARRAY_N)	`ext/filters/filters.php:573:42`	Security
ERROR	`WordPress.WP.I18n.MissingTranslatorsComment`	A function call to esc_html__() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.	`views/elements/draw_grouped_popup_editor_btn.php:20:22`	General
ERROR	`WordPress.WP.I18n.MissingTranslatorsComment`	A function call to esc_html__() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.	`views/elements/draw_grouped_popup_editor_btn.php:25:375`	General
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$prod_id".	`views/elements/draw_grouped_popup_editor_btn.php:27:36`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$p".	`views/elements/draw_grouped_popup_editor_btn.php:30:17`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$li_data".	`views/elements/draw_grouped_popup_editor_btn.php:36:17`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$img_src".	`views/elements/draw_grouped_popup_editor_btn.php:43:21`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$li_data".	`views/elements/draw_grouped_popup_editor_btn.php:44:21`	Plugin Repo
ERROR	`WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound`	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$li_data".	`views/elements/draw_grouped_popup_editor_btn.php:46:21`	Plugin Repo
ERROR	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $product_variations_ids_string used in $wpdb->get_results("\r\n SELECT posts.post_parent\r\n FROM $wpdb->posts AS posts\r\n WHERE posts.ID IN ($product_variations_ids_string) AND posts.post_parent > 0")\n$product_variations_ids_string assigned unsafely at line 599:\n $product_variations_ids_string = implode(',', $product_variations_ids)\n$product_variations_ids assigned unsafely at line 595:\n $product_variations_ids[] = $v[0]\n$v[0] used without escaping.	`ext/filters/filters.php:601:32`	Security

1100 total row(s)


09.01.2026, 16:00:28	23s	6	296	804
13.11.2025, 04:05:53	29s	6	293	800

BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net

Security776

Plugin Repository181

Performance57

General40

index.php193 issues in this fileTotal: 193Errors: 13Warnings: 180

ext/filters/filters.php157 issues in this fileTotal: 157Errors: 14Warnings: 143

ext/bulk/bulk.php127 issues in this fileTotal: 127Errors: 4Warnings: 123

ext/history/history.php118 issues in this fileTotal: 118Errors: 15Warnings: 103

ext/bulkoperations/bulkoperations.php89 issues in this fileTotal: 89Errors: 1Warnings: 88

views/woobe.php50 issues in this fileTotal: 50Errors: 47Warnings: 3

classes/models/products.php49 issues in this fileTotal: 49Errors: 10Warnings: 39

ext/export/export.php48 issues in this fileTotal: 48Errors: 9Warnings: 39

data/fields.php20 issues in this fileTotal: 20Errors: 3Warnings: 17

ext/history/views/list.php18 issues in this fileTotal: 18Errors: 18