YITH WooCommerce Gift Cards

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$_defaults".

Mismatched text domain. Expected 'yith-woocommerce-gift-cards' but got 'woocommerce'.

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "'yit_before_metabox_option_' . urldecode( $key )".

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$amount'.

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "YIT_Plugin_Licence".

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "WC_Product_Gift_Card".

Processing form data without nonce verification.

Missing $domain parameter in function call to __().

A function call to esc_html__() with texts containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.

All output should be run through an escaping function (like echo esc_html_x() or echo esc_attr_x()), found '_ex'.

Detected usage of a non-sanitized input variable: $_GET['term']

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "$deprecated_filters[ $filter ]".

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "DOING_YITH_BH_ONBOARDING".

$_POST['gift-card-amounts'] not unslashed before sanitization. Use wp_unslash() or similar

The $text parameter must be a single text string literal. Found: $amount

Unescaped parameter $args used in $wpdb->get_results()\n$args assigned unsafely at line 188.

Use placeholders and $wpdb->prepare(); found $sql

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$response'.

The parameter "$args" at position #2 of get_terms() has been deprecated since WordPress version 4.5.0. Instead do not pass the parameter.

The plugin name includes a restricted term. Your chosen plugin name - "YITH WooCommerce Gift Cards" - contains the restricted term "woocommerce" which cannot be used within in your plugin name, unless your plugin name contains one of the allowed patterns: "for woocommerce", "with woocommerce", "using woocommerce", or "and woocommerce". The term must still not appear anywhere else in your name.

Processing form data without nonce verification.

Detected usage of a possibly undefined superglobal array index: $_REQUEST['categories1_id']. Check that the array index exists before using it.

Using exclusionary parameters, like exclude, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.

Plugin Updater detected. Detected code which may be altering WordPress update routines. Detected: _site_transient_update_plugins