Minor fixes uncovered by codesniffing #11
dshanskeAnnotations
10 errors and 10 warnings
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/class-rest-geo.php#L472
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$venue_args'.
|
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/class-loc-config.php#L896
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$providers[$text]['description']'.
|
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/widgets/class-sloc-weather-widget.php#L54
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$weather'.
|
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/widgets/class-sloc-weather-widget.php#L114
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.
|
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/widgets/class-sloc-weather-widget.php#L114
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$weather['_expires_at']'.
|
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/widgets/class-sloc-lastseen-widget.php#L54
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'Weather_Provider'.
|
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/widgets/class-sloc-lastseen-widget.php#L54
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.
|
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/widgets/class-sloc-lastseen-widget.php#L64
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'Weather_Provider'.
|
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/widgets/class-sloc-lastseen-widget.php#L64
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '__'.
|
|
WordPress.Security.EscapeOutput.OutputNotEscaped:
includes/widgets/class-sloc-lastseen-widget.php#L71
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'Weather_Provider'.
|
|
WordPress.DB.SlowDBQuery.slow_db_query_tax_query:
includes/class-rest-geo.php#L465
Detected usage of tax_query, possible slow query.
|
|
WordPress.DB.SlowDBQuery.slow_db_query_meta_query:
includes/class-loc-config.php#L401
Detected usage of meta_query, possible slow query.
|
|
WordPress.Security.NonceVerification.Recommended:
includes/class-loc-config.php#L421
Processing form data without nonce verification.
|
|
WordPress.Security.NonceVerification.Recommended:
includes/class-loc-config.php#L421
Processing form data without nonce verification.
|
|
WordPress.Security.ValidatedSanitizedInput.MissingUnslash:
includes/class-loc-config.php#L421
$_GET['tab'] not unslashed before sanitization. Use wp_unslash() or similar
|
|
WordPress.WP.I18n.TextDomainMismatch:
includes/class-loc-config.php#L875
Mismatched text domain. Expected 'simple-location' but got 'default'.
|
|
WordPress.Security.NonceVerification.Recommended:
includes/class-post-venue.php#L203
Processing form data without nonce verification.
|
|
WordPress.Security.NonceVerification.Recommended:
includes/class-post-venue.php#L207
Processing form data without nonce verification.
|
|
WordPress.Security.ValidatedSanitizedInput.MissingUnslash:
includes/class-post-venue.php#L207
$_GET['post__in'] not unslashed before sanitization. Use wp_unslash() or similar
|
|
WordPress.Security.ValidatedSanitizedInput.InputNotSanitized:
includes/class-post-venue.php#L207
Detected usage of a non-sanitized input variable: $_GET['post__in']
|