MailerLite – WooCommerce integration

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$error_message'.

Function "get_current_screen()" requires WordPress 3.1.0, but your plugin minimum supported version is WordPress 3.0.1.

Processing form data without nonce verification.

Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.

Processing form data without nonce verification.

$_POST[$key] not unslashed before sanitization. Use wp_unslash() or similar

Using cURL functions is highly discouraged. Use wp_remote_get() instead.

The plugin name includes a restricted term. Your chosen plugin name - "MailerLite - WooCommerce integration" - contains the restricted term "woocommerce" which cannot be used within in your plugin name, unless your plugin name contains one of the allowed patterns: "for woocommerce", "with woocommerce", "using woocommerce", or "and woocommerce". The term must still not appear anywhere else in your name.

No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.

Detected usage of meta_query, possible slow query.

Detected usage of a non-sanitized input variable: $_POST[$key]

The $text parameter must be a single text string literal. Found: $this->label

Mismatched text domain. Expected 'woo-mailerlite' but got 'woocommerce'.

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

Short PHP opening tag used with echo; expected "<?php echo intval ..." but found "<?= intval ..."

Found call to wp_enqueue_script() with external resource. Offloading scripts to your servers or any remote service is disallowed.

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

wp_redirect() found. Using wp_safe_redirect(), along with the &quot;allowed_redirect_hosts&quot; filter if needed, can help avoid any chances of malicious redirects within code. It is also important to remember to call exit() after a redirect so that no other unwanted code is executed.

Using cURL functions is highly discouraged. Use wp_remote_get() instead.

Using cURL functions is highly discouraged. Use wp_remote_get() instead.

Using cURL functions is highly discouraged. Use wp_remote_get() instead.

mt_rand() is discouraged. Use the far less predictable wp_rand() instead.

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

In footer ($in_footer) is not set explicitly wp_register_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

Scripts must be registered/enqueued via wp_enqueue_script()