Backup, Restore and Migrate your sites with XCloner

Detected usage of a non-sanitized input variable: $_FILES['blob']['tmp_name']

Processing form data without nonce verification.

$_GET['id'] not unslashed before sanitization. Use wp_unslash() or similar

Detected usage of a possibly undefined superglobal array index: $_FILES['blob']['tmp_name']. Check that the array index exists before using it.

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$available_storages".

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$backup_name'.

Processing form data without nonce verification.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"Could not create directory '{$outdir}'"'.

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().

Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fread().

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: is_writeable().

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: chmod().

In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

var_export() found. Debug code should not normally be used in production.

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: is_writable().

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: mkdir().

File and folder names must not contain spaces or special characters.

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "buildCleanupHtml".

Using cURL functions is highly discouraged. Use wp_remote_get() instead.

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: touch().

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.