WP Sitemap Page

A function call to __() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'WSP_DONATE_LINK'.

Using exclusionary parameters, like exclude, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.

The plugin name includes a restricted term. Your chosen plugin name - "WP Sitemap Page" - contains the restricted term "wp" which cannot be used at all in your plugin name.

Processing form data without nonce verification.

Missing $domain parameter in function call to esc_html_e().

Function "esc_textarea()" requires WordPress 3.1.0, but your plugin minimum supported version is WordPress 3.0.0.

Unescaped parameter $sql used in $wpdb->get_col()\n$sql assigned unsafely at line 539.

Use of a direct database call is discouraged.

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

Use placeholders and $wpdb->prepare(); found $sql

Detected usage of a non-sanitized input variable: $_GET['tab']

$_GET['tab'] not unslashed before sanitization. Use wp_unslash() or similar

The parameter "$args" at position #2 of get_terms() has been deprecated since WordPress version 4.5.0. Instead do not pass the parameter.

Tested up to: 6.8 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

Missing "License" in Plugin Header. Please update your Plugin Header with a valid GPLv2 (or later) compatible license.

One or more tags were ignored. Please limit your plugin to 5 tags.