Multiple issues identified.
All Audits
Every plugin we've run through the wringer, chronologically.
$_SERVER['REMOTE_ADDR'] not unslashed before sanitization. Use wp_unslash() or similar
The WordPress Plugin Accountability Press
AI slop gets all the headlines. But humans have been writing bad code for decades.
Every plugin we've run through the wringer, chronologically.
Multiple issues identified.
$_SERVER['REMOTE_ADDR'] not unslashed before sanitization. Use wp_unslash() or similar