Sign upLogin

felixarntz/global-admin

View on GitHub
Star

Showing 251 of 251 total issues

Each array item in a multi-line array declaration must end in a comma
Open

    'content' => $quick_tasks
Severity: Minor
Found in wp-global-admin/wp-admin/global/index.php by phpcodesniffer

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
Open

                    <?php _e( 'Global Administrator', 'wp-global-admin' ); ?>
Severity: Minor
Found in wp-global-admin/wp-admin/global/user-edit.php by phpcodesniffer

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.
Open

<h1 id="add-new-user"><?php _e( 'Add New User' ); ?></h1>
Severity: Minor
Found in wp-global-admin/wp-admin/global/user-new.php by phpcodesniffer

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.
Open

    wp_die( __( 'Multinetwork support is not enabled.', 'wp-global-admin' ) );
Severity: Minor
Found in wp-global-admin/wp-admin/global/users.php by phpcodesniffer

Detected usage of a non-validated input variable: $_GET
Open

            $id = intval( $_GET['id'] );
Severity: Minor
Found in wp-global-admin/wp-admin/global/users.php by phpcodesniffer

Missing wp_unslash() before sanitization.
Open

                $doaction     = $_POST['action'] != -1 ? $_POST['action'] : $_POST['action2'];
Severity: Minor
Found in wp-global-admin/wp-admin/global/users.php by phpcodesniffer

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.
Open

                                    wp_die( sprintf( __( 'Warning! User cannot be modified. The user %s is a network administrator.' ), esc_html( $user->user_login ) ) );
Severity: Minor
Found in wp-global-admin/wp-admin/global/users.php by phpcodesniffer

Missing wp_unslash() before sanitization.
Open

                foreach ( $_POST['blog'] as $id => $users ) {
Severity: Minor
Found in wp-global-admin/wp-admin/global/users.php by phpcodesniffer

A gettext call containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
Open

        $role_links['all'] = "<a href='" . global_admin_url( 'users.php' ) . "'$class>" . sprintf( _nx( 'All <span class="count">(%s)</span>', 'All <span class="count">(%s)</span>', $total_users, 'users', 'wp-global-admin' ), number_format_i18n( $total_users ) ) . '</a>';
Severity: Minor
Found in wp-global-admin/wp-admin/includes/class-wp-ga-users-list-table.php by phpcodesniffer

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$network'.
Open

            echo '<a href="' . esc_url( network_admin_url( 'site-info.php?id=' . $network->id ) ) . '">' . $network->domain . $path . '</a>';
Severity: Minor
Found in wp-global-admin/wp-admin/includes/class-wp-ga-users-list-table.php by phpcodesniffer

Detected usage of a non-sanitized input variable: $_SERVER
Open

        preg_match( '#/wp-admin/global/?(.*?)$#i', $_SERVER['PHP_SELF'], $self_matches );
Severity: Minor
Found in wp-global-admin/wp-admin/includes/hacks.php by phpcodesniffer

Detected usage of a non-validated input variable: $_SERVER
Open

            $edit_link       = esc_url( add_query_arg( 'wp_http_referer', urlencode( wp_unslash( $_SERVER['REQUEST_URI'] ) ), get_edit_user_link( $user->ID ) ) );
Severity: Minor
Found in wp-global-admin/wp-admin/includes/class-wp-ga-users-list-table.php by phpcodesniffer

Overriding WordPress globals is prohibited. Found assignment to $pagenow
Open

        $pagenow = $self_matches[1];
Severity: Minor
Found in wp-global-admin/wp-admin/includes/hacks.php by phpcodesniffer

Detected usage of a non-validated input variable: $_SERVER
Open

        $self = preg_replace( '|^.*/wp-admin/global/|i', '', $_SERVER['PHP_SELF'] );
Severity: Minor
Found in wp-global-admin/wp-admin/includes/hacks.php by phpcodesniffer

A gettext call containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
Open

        $admin_title = sprintf( __( '%1$s &lsaquo; %2$s &#8212; WordPress' ), $title, $new_admin_title );
Severity: Minor
Found in wp-global-admin/wp-admin/includes/hacks.php by phpcodesniffer

Overriding WordPress globals is prohibited. Found assignment to $pagenow
Open

        $pagenow = preg_replace( '#\?.*?$#', '', $pagenow );
Severity: Minor
Found in wp-global-admin/wp-admin/includes/hacks.php by phpcodesniffer

A gettext call containing placeholders was found, but was not accompanied by a "translators:" comment on the line above to clarify the meaning of the placeholders.
Open

        $admin_title = sprintf( __( '%1$s &#8212; WordPress' ), $new_admin_title );
Severity: Minor
Found in wp-global-admin/wp-admin/includes/hacks.php by phpcodesniffer

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'wp_nonce_url'.
Open

                wp_nonce_url(
Severity: Minor
Found in wp-global-admin.php by phpcodesniffer

Terminating statement must be indented to the same level as the CASE body
Open

            break;
Severity: Minor
Found in wp-global-admin/wp-admin/global/users.php by phpcodesniffer

Detected usage of a non-sanitized input variable: $_POST
Open

            wp_dashboard_trigger_widget_control( $_POST['widget_id'] );
Severity: Minor
Found in wp-global-admin/wp-admin/includes/dashboard.php by phpcodesniffer
Severity
Category
Status
Source
Language