WPS Menu Exporter

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"\t<wp:term><wp:term_id>{$menu->term_id}</wp:term_id><wp:term_taxonomy>nav_menu</wp:term_taxonomy><wp:term_slug>{$menu->slug}</wp:term_slug>"'.

Use of a direct database call is discouraged.

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

Processing form data without nonce verification.

The plugin name includes a restricted term. Your chosen plugin name - "WPS Menu Exporter" - contains the restricted term "wp" which cannot be used at all in your plugin name.

Use placeholders and $wpdb-&gt;prepare(); found interpolated variable $where at &quot;SELECT * FROM {$wpdb-&gt;posts} $where&quot;

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

Unescaped parameter $where used in $wpdb-&gt;get_results()\n$where assigned unsafely at line 253.

rand() is discouraged. Use the far less predictable wp_rand() instead.

seems_utf8() has been deprecated since WordPress version 6.9.0. Use wp_is_valid_utf8() instead.

Missing $domain parameter in function call to __().

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

Tested up to: 6.8 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.

The "Domain Path" header in the plugin file must start with forward slash.

One or more tags were ignored. Please limit your plugin to 5 tags.

Function "utf8_encode()" requires WordPress 6.9.0, but your plugin minimum supported version is WordPress 4.2.0.