Issues in shortcode-profile-editor.php (master) - Issues in master - ravinderk/Give - Measure and Improve Code Quality continuously with Scrutinizer

Issues (4335)

Security Analysis not enabled

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

templates/shortcode-profile-editor.php (21 issues)

Labels

Duplication 4

Severity

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
/**
 * Profile Editor
 *
 * This template is used to display the profile editor with [give_profile_editor]
 *
 * @copyright    Copyright (c) 2016, GiveWP
 * @license      https://opensource.org/licenses/gpl-license GNU Public License
 */

$current_user = wp_get_current_user();

if ( is_user_logged_in() ) :
	$user_id = get_current_user_id();
	$first_name   = get_user_meta( $user_id, 'first_name', true );

	$last_name    = get_user_meta( $user_id, 'last_name', true );

	$last_name    = get_user_meta( $user_id, 'last_name', true );

	$display_name = $current_user->display_name;
	$donor        = new Give_Donor( $user_id, true );
	$address      = $donor->get_donor_address( array( 'address_type' => 'personal' ) );
	$company_name = $donor->get_meta( '_give_donor_company', true );

	if ( isset( $_GET['updated'] ) && 'true' === $_GET['updated'] && ! give_get_errors() ) {

		if ( isset( $_GET['update_code'] ) ) {

			if ( 1 === absint( $_GET['update_code'] ) ) {

				printf( '<p class="give_success"><strong>%1$s</strong> %2$s</p>', esc_html__( 'Success:', 'give' ), esc_html__( 'Your profile has been updated.', 'give' ) );
			}
		}
	}

	Give()->notices->render_frontend_notices( 0 );

	/**
	 * Fires in the profile editor shortcode, before the form.
	 *
	 * Allows you to add new elements before the form.
	 *
	 * @since 1.0
	 */
	do_action( 'give_profile_editor_before' );
	?>

	<form id="give_profile_editor_form" class="give-form" action="<?php echo give_get_current_page_url(); ?>" method="post">

		<fieldset>
			<legend id="give_profile_name_label"><?php _e( 'Profile', 'give' ); ?></legend>

			<h3 id="give_personal_information_label"
			    class="give-section-break"><?php _e( 'Change your Name', 'give' ); ?></h3>

			<p id="give_profile_first_name_wrap" class="form-row form-row-first form-row-responsive">
				<label for="give_first_name">
					<?php _e( 'First Name', 'give' ); ?>
					<span class="give-required-indicator  ">*</span>
				</label>
				<input name="give_first_name" id="give_first_name" class="text give-input" type="text"
				       value="<?php echo esc_attr( $first_name ); ?>"/>
			</p>

			<p id="give_profile_last_name_wrap" class="form-row form-row-last form-row-responsive">
				<label for="give_last_name"><?php _e( 'Last Name', 'give' ); ?></label>
				<input name="give_last_name" id="give_last_name" class="text give-input" type="text"
				       value="<?php echo esc_attr( $last_name ); ?>"/>
			</p>

			<?php if ( ! empty( $company_name ) ) : ?>
				<p id="give_profile_company_name_wrap" class="form-row form-row-wide">
					<label for="give_company_name"><?php _e( 'Company Name', 'give' ); ?></label>
					<input name="give_company_name" id="give_company_name" class="text give-input" type="text"
					       value="<?php echo esc_attr( $company_name ); ?>"/>
				</p>
			<?php endif; ?>

			<p id="give_profile_display_name_wrap" class="form-row form-row-first form-row-responsive">
				<label for="give_display_name"><?php _e( 'Display Name', 'give' ); ?></label>
				<select name="give_display_name" id="give_display_name" class="select give-select">
					<?php if ( ! empty( $current_user->first_name ) ): ?>

						<option <?php selected( $display_name, $current_user->first_name ); ?>
							value="<?php echo esc_attr( $current_user->first_name ); ?>"><?php echo esc_html( $current_user->first_name ); ?></option>
					<?php endif; ?>
					<option <?php selected( $display_name, $current_user->user_nicename ); ?>
						value="<?php echo esc_attr( $current_user->user_nicename ); ?>"><?php echo esc_html( $current_user->user_nicename ); ?></option>
					<?php if ( ! empty( $current_user->last_name ) ): ?>

						<option <?php selected( $display_name, $current_user->last_name ); ?>
							value="<?php echo esc_attr( $current_user->last_name ); ?>"><?php echo esc_html( $current_user->last_name ); ?></option>
					<?php endif; ?>
					<?php if ( ! empty( $current_user->first_name ) && ! empty( $current_user->last_name ) ): ?>
						<option <?php selected( $display_name, $current_user->first_name . ' ' . $current_user->last_name ); ?>
							value="<?php echo esc_attr( $current_user->first_name . ' ' . $current_user->last_name ); ?>"><?php echo esc_html( $current_user->first_name . ' ' . $current_user->last_name ); ?></option>
						<option <?php selected( $display_name, $current_user->last_name . ' ' . $current_user->first_name ); ?>
							value="<?php echo esc_attr( $current_user->last_name . ' ' . $current_user->first_name ); ?>"><?php echo esc_html( $current_user->last_name . ' ' . $current_user->first_name ); ?></option>
					<?php endif; ?>
				</select>
				<?php
				/**
				 * Fires in the profile editor shortcode, to the name section.
				 *
				 * Allows you to add new elements to the name section.
				 *
				 * @since 1.0
				 */
				do_action( 'give_profile_editor_name' );
				?>
			</p>

			<?php
			/**
			 * Fires in the profile editor shortcode, after the name field.
			 *
			 * Allows you to add new fields after the name field.
			 *
			 * @since 1.0
			 */
			do_action( 'give_profile_editor_after_name' );
			?>

			<p class="form-row form-row-last form-row-responsive">
				<label for="give_email">
					<?php _e( 'Email Address', 'give' ); ?>
					<span class="give-required-indicator  ">*</span>
				</label>
				<input name="give_email" id="give_email" class="text give-input required" type="email"
				       value="<?php echo esc_attr( $current_user->user_email ); ?>" required aria-required="true"/>
				<?php
				/**
				 * Fires in the profile editor shortcode, to the email section.
				 *
				 * Allows you to add new elements to the email section.
				 *
				 * @since 1.0
				 */
				do_action( 'give_profile_editor_email' );
				?>
			</p>

			<?php
			/**
			 * Fires in the profile editor shortcode, after the email field.
			 *
			 * Allows you to add new fields after the email field.
			 *
			 * @since 1.0
			 */
			do_action( 'give_profile_editor_after_email' );
			?>

			<h3 id="give_profile_password_label"
			    class="give-section-break"><?php _e( 'Change your Password', 'give' ); ?></h3>

			<div id="give_profile_password_wrap" class="give-clearfix">
				<p id="give_profile_password_wrap_1" class="form-row form-row-first form-row-responsive">
					<label for="give_new_user_pass1"><?php _e( 'New Password', 'give' ); ?></label>
					<input name="give_new_user_pass1" id="give_new_user_pass1" class="password give-input"
					       type="password"/>
				</p>

				<p id="give_profile_password_wrap_2" class="form-row form-row-last form-row-responsive">
					<label for="give_new_user_pass2"><?php _e( 'Re-enter Password', 'give' ); ?></label>
					<input name="give_new_user_pass2" id="give_new_user_pass2" class="password give-input"
					       type="password"/>
					<?php
					/**
					 * Fires in the profile editor shortcode, to the password section.
					 *
					 * Allows you to add new elements to the password section.
					 *
					 * @since 1.0
					 */
					do_action( 'give_profile_editor_password' );
					?>
				</p>
			</div>

			<p class="give_password_change_notice"><?php _e( 'Please note after changing your password, you must log back in.', 'give' ); ?></p>

			<?php
			/**
			 * Fires in the profile editor shortcode, after the password field.
			 *
			 * Allows you to add new fields after the password field.
			 *
			 * @since 1.0
			 */
			do_action( 'give_profile_editor_after_password' );
			?>

			<p id="give_profile_submit_wrap">
				<input type="hidden" name="give_profile_editor_nonce"
				       value="<?php echo wp_create_nonce( 'give-profile-editor-nonce' ); ?>"/>

				<input type="hidden" name="give_action" value="edit_user_profile"/>
				<input type="hidden" name="give_redirect"
				       value="<?php echo esc_url( give_get_current_page_url() ); ?>"/>
				<input name="give_profile_editor_submit" id="give_profile_editor_submit" type="submit"
				       class="give_submit" value="<?php _e( 'Save Changes', 'give' ); ?>"/>
			</p>

		</fieldset>

	</form><!-- #give_profile_editor_form -->

	<?php
	/**
	 * Fires in the profile editor shortcode, after the form.
	 *
	 * Allows you to add new elements after the form.
	 *
	 * @since 1.0
	 */
	do_action( 'give_profile_editor_after' );
	?>

<?php
else :
	if ( isset( $_GET['updated'] ) && 'true' === $_GET['updated'] && ! give_get_errors() ) {

		if ( isset( $_GET['update_code'] ) ) {

			switch ( $_GET['update_code'] ) {

				case '2':

					printf( '<p class="give_success"><strong>%1$s</strong> %2$s</p>', esc_html__( 'Success:', 'give' ), esc_html__( 'Your profile and password has been updated.', 'give' ) );
					_e( 'Login with your new credentials.', 'give' );
					echo give_login_form();

					break;

				case '3':

					printf( '<p class="give_success"><strong>%1$s</strong> %2$s</p>', esc_html__( 'Success:', 'give' ), esc_html__( 'Your password has been updated.', 'give' ) );
					_e( 'Login with your new credentials.', 'give' );
					echo give_login_form();

					break;

				default:
					break;
			}
		}
	} else {
		_e( 'You need to login to edit your profile.', 'give' );
		echo give_login_form();

	}
endif;


1		<?php
2		/**
3		* Profile Editor
4		*
5		* This template is used to display the profile editor with [give_profile_editor]
6		*
7		* @copyright Copyright (c) 2016, GiveWP
8		* @license https://opensource.org/licenses/gpl-license GNU Public License
9		*/
10
11		$current_user = wp_get_current_user();
12
13		if ( is_user_logged_in() ) :
14		$user_id = get_current_user_id();
15		$first_name = get_user_meta( $user_id, 'first_name', true );
		0 ignored issues – show introduced 2017-07-29 03:17 UTC by Report Bug Copy Issue Report Show Similar Issues like this get_user_meta() usage is highly discouraged, check VIP documentation on "Working with wp_users" Loading history...
16		$last_name = get_user_meta( $user_id, 'last_name', true );
		0 ignored issues – show introduced 2018-04-03 03:49 UTC by Report Bug Copy Issue Report Show Similar Issues like this get_user_meta() usage is highly discouraged, check VIP documentation on "Working with wp_users" Loading history...
17		$last_name = get_user_meta( $user_id, 'last_name', true );
		0 ignored issues – show introduced 2017-07-29 03:17 UTC by Report Bug Copy Issue Report Show Similar Issues like this get_user_meta() usage is highly discouraged, check VIP documentation on "Working with wp_users" Loading history...
18		$display_name = $current_user->display_name;
19		$donor = new Give_Donor( $user_id, true );
20		$address = $donor->get_donor_address( array( 'address_type' => 'personal' ) );
21		$company_name = $donor->get_meta( '_give_donor_company', true );
22
23		if ( isset( $_GET['updated'] ) && 'true' === $_GET['updated'] && ! give_get_errors() ) {
		0 ignored issues – show introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Detected access of super global var $_GET, probably need manual inspection. Loading history... introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Detected usage of a non-sanitized input variable: $_GET Loading history...
24		if ( isset( $_GET['update_code'] ) ) {
		0 ignored issues – show introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Detected access of super global var $_GET, probably need manual inspection. Loading history...
25		if ( 1 === absint( $_GET['update_code'] ) ) {
		0 ignored issues – show introduced 2018-05-22 04:44 UTC by Report Bug Copy Issue Report Show Similar Issues like this Detected access of super global var $_GET, probably need manual inspection. Loading history...
26		printf( '<p class="give_success"><strong>%1$s</strong> %2$s</p>', esc_html__( 'Success:', 'give' ), esc_html__( 'Your profile has been updated.', 'give' ) );
27		}
28		}
29		}
30
31		Give()->notices->render_frontend_notices( 0 );
32
33		/**
34		* Fires in the profile editor shortcode, before the form.
35		*
36		* Allows you to add new elements before the form.
37		*
38		* @since 1.0
39		*/
40		do_action( 'give_profile_editor_before' );
41		?>
42
43		<form id="give_profile_editor_form" class="give-form" action="<?php echo give_get_current_page_url(); ?>" method="post">
		0 ignored issues – show introduced 2017-07-29 03:17 UTC by Report Bug Copy Issue Report Show Similar Issues like this Expected a sanitizing function (see Codex for 'Data Validation'), but instead saw 'give_get_current_page_url' Loading history...
44		<fieldset>
45		<legend id="give_profile_name_label"><?php _e( 'Profile', 'give' ); ?></legend>
46
47		<h3 id="give_personal_information_label"
48		class="give-section-break"><?php _e( 'Change your Name', 'give' ); ?></h3>
49
50		<p id="give_profile_first_name_wrap" class="form-row form-row-first form-row-responsive">
51		<label for="give_first_name">
52		<?php _e( 'First Name', 'give' ); ?>
53		<span class="give-required-indicator ">*</span>
54		</label>
55		<input name="give_first_name" id="give_first_name" class="text give-input" type="text"
56		value="<?php echo esc_attr( $first_name ); ?>"/>
57		</p>
58
59		<p id="give_profile_last_name_wrap" class="form-row form-row-last form-row-responsive">
60		<label for="give_last_name"><?php _e( 'Last Name', 'give' ); ?></label>
61		<input name="give_last_name" id="give_last_name" class="text give-input" type="text"
62		value="<?php echo esc_attr( $last_name ); ?>"/>
63		</p>
64
65		<?php if ( ! empty( $company_name ) ) : ?>
66		<p id="give_profile_company_name_wrap" class="form-row form-row-wide">
67		<label for="give_company_name"><?php _e( 'Company Name', 'give' ); ?></label>
68		<input name="give_company_name" id="give_company_name" class="text give-input" type="text"
69		value="<?php echo esc_attr( $company_name ); ?>"/>
70		</p>
71		<?php endif; ?>
72
73		<p id="give_profile_display_name_wrap" class="form-row form-row-first form-row-responsive">
74		<label for="give_display_name"><?php _e( 'Display Name', 'give' ); ?></label>
75		<select name="give_display_name" id="give_display_name" class="select give-select">
76	View Code Duplication	<?php if ( ! empty( $current_user->first_name ) ): ?>
		0 ignored issues – show Duplication introduced 2017-07-29 03:17 UTC by Report Bug Copy Issue Report Show Similar Issues like this This code seems to be duplicated across your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
77		<option <?php selected( $display_name, $current_user->first_name ); ?>
78		value="<?php echo esc_attr( $current_user->first_name ); ?>"><?php echo esc_html( $current_user->first_name ); ?></option>
79		<?php endif; ?>
80		<option <?php selected( $display_name, $current_user->user_nicename ); ?>
81		value="<?php echo esc_attr( $current_user->user_nicename ); ?>"><?php echo esc_html( $current_user->user_nicename ); ?></option>
82	View Code Duplication	<?php if ( ! empty( $current_user->last_name ) ): ?>
		0 ignored issues – show Duplication introduced 2017-07-29 03:17 UTC by Report Bug Copy Issue Report Show Similar Issues like this This code seems to be duplicated across your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
83		<option <?php selected( $display_name, $current_user->last_name ); ?>
84		value="<?php echo esc_attr( $current_user->last_name ); ?>"><?php echo esc_html( $current_user->last_name ); ?></option>
85		<?php endif; ?>
86		<?php if ( ! empty( $current_user->first_name ) && ! empty( $current_user->last_name ) ): ?>
87		<option <?php selected( $display_name, $current_user->first_name . ' ' . $current_user->last_name ); ?>
88		value="<?php echo esc_attr( $current_user->first_name . ' ' . $current_user->last_name ); ?>"><?php echo esc_html( $current_user->first_name . ' ' . $current_user->last_name ); ?></option>
89		<option <?php selected( $display_name, $current_user->last_name . ' ' . $current_user->first_name ); ?>
90		value="<?php echo esc_attr( $current_user->last_name . ' ' . $current_user->first_name ); ?>"><?php echo esc_html( $current_user->last_name . ' ' . $current_user->first_name ); ?></option>
91		<?php endif; ?>
92		</select>
93		<?php
94		/**
95		* Fires in the profile editor shortcode, to the name section.
96		*
97		* Allows you to add new elements to the name section.
98		*
99		* @since 1.0
100		*/
101		do_action( 'give_profile_editor_name' );
102		?>
103		</p>
104
105		<?php
106		/**
107		* Fires in the profile editor shortcode, after the name field.
108		*
109		* Allows you to add new fields after the name field.
110		*
111		* @since 1.0
112		*/
113		do_action( 'give_profile_editor_after_name' );
114		?>
115
116		<p class="form-row form-row-last form-row-responsive">
117		<label for="give_email">
118		<?php _e( 'Email Address', 'give' ); ?>
119		<span class="give-required-indicator ">*</span>
120		</label>
121		<input name="give_email" id="give_email" class="text give-input required" type="email"
122		value="<?php echo esc_attr( $current_user->user_email ); ?>" required aria-required="true"/>
123		<?php
124		/**
125		* Fires in the profile editor shortcode, to the email section.
126		*
127		* Allows you to add new elements to the email section.
128		*
129		* @since 1.0
130		*/
131		do_action( 'give_profile_editor_email' );
132		?>
133		</p>
134
135		<?php
136		/**
137		* Fires in the profile editor shortcode, after the email field.
138		*
139		* Allows you to add new fields after the email field.
140		*
141		* @since 1.0
142		*/
143		do_action( 'give_profile_editor_after_email' );
144		?>
145
146		<h3 id="give_profile_password_label"
147		class="give-section-break"><?php _e( 'Change your Password', 'give' ); ?></h3>
148
149		<div id="give_profile_password_wrap" class="give-clearfix">
150		<p id="give_profile_password_wrap_1" class="form-row form-row-first form-row-responsive">
151		<label for="give_new_user_pass1"><?php _e( 'New Password', 'give' ); ?></label>
152		<input name="give_new_user_pass1" id="give_new_user_pass1" class="password give-input"
153		type="password"/>
154		</p>
155
156		<p id="give_profile_password_wrap_2" class="form-row form-row-last form-row-responsive">
157		<label for="give_new_user_pass2"><?php _e( 'Re-enter Password', 'give' ); ?></label>
158		<input name="give_new_user_pass2" id="give_new_user_pass2" class="password give-input"
159		type="password"/>
160		<?php
161		/**
162		* Fires in the profile editor shortcode, to the password section.
163		*
164		* Allows you to add new elements to the password section.
165		*
166		* @since 1.0
167		*/
168		do_action( 'give_profile_editor_password' );
169		?>
170		</p>
171		</div>
172
173		<p class="give_password_change_notice"><?php _e( 'Please note after changing your password, you must log back in.', 'give' ); ?></p>
174
175		<?php
176		/**
177		* Fires in the profile editor shortcode, after the password field.
178		*
179		* Allows you to add new fields after the password field.
180		*
181		* @since 1.0
182		*/
183		do_action( 'give_profile_editor_after_password' );
184		?>
185
186		<p id="give_profile_submit_wrap">
187		<input type="hidden" name="give_profile_editor_nonce"
188		value="<?php echo wp_create_nonce( 'give-profile-editor-nonce' ); ?>"/>
		0 ignored issues – show introduced 2018-04-03 03:49 UTC by Report Bug Copy Issue Report Show Similar Issues like this Expected a sanitizing function (see Codex for 'Data Validation'), but instead saw 'wp_create_nonce' Loading history...
189		<input type="hidden" name="give_action" value="edit_user_profile"/>
190		<input type="hidden" name="give_redirect"
191		value="<?php echo esc_url( give_get_current_page_url() ); ?>"/>
192		<input name="give_profile_editor_submit" id="give_profile_editor_submit" type="submit"
193		class="give_submit" value="<?php _e( 'Save Changes', 'give' ); ?>"/>
194		</p>
195
196		</fieldset>
197
198		</form><!-- #give_profile_editor_form -->
199
200		<?php
201		/**
202		* Fires in the profile editor shortcode, after the form.
203		*
204		* Allows you to add new elements after the form.
205		*
206		* @since 1.0
207		*/
208		do_action( 'give_profile_editor_after' );
209		?>
210
211		<?php
212		else :
213		if ( isset( $_GET['updated'] ) && 'true' === $_GET['updated'] && ! give_get_errors() ) {
		0 ignored issues – show introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Detected access of super global var $_GET, probably need manual inspection. Loading history... introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Detected usage of a non-sanitized input variable: $_GET Loading history...
214		if ( isset( $_GET['update_code'] ) ) {
		0 ignored issues – show introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Detected access of super global var $_GET, probably need manual inspection. Loading history...
215		switch ( $_GET['update_code'] ) {
		0 ignored issues – show introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Detected access of super global var $_GET, probably need manual inspection. Loading history... introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Detected usage of a non-sanitized input variable: $_GET Loading history...
216	View Code Duplication	case '2':
		0 ignored issues – show Duplication introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this This code seems to be duplicated across your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
217		printf( '<p class="give_success"><strong>%1$s</strong> %2$s</p>', esc_html__( 'Success:', 'give' ), esc_html__( 'Your profile and password has been updated.', 'give' ) );
218		_e( 'Login with your new credentials.', 'give' );
219		echo give_login_form();
		0 ignored issues – show introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Expected a sanitizing function (see Codex for 'Data Validation'), but instead saw 'give_login_form' Loading history...
220		break;
221
222	View Code Duplication	case '3':
		0 ignored issues – show Duplication introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this This code seems to be duplicated across your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
223		printf( '<p class="give_success"><strong>%1$s</strong> %2$s</p>', esc_html__( 'Success:', 'give' ), esc_html__( 'Your password has been updated.', 'give' ) );
224		_e( 'Login with your new credentials.', 'give' );
225		echo give_login_form();
		0 ignored issues – show introduced 2018-02-16 16:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this Expected a sanitizing function (see Codex for 'Data Validation'), but instead saw 'give_login_form' Loading history...
226		break;
227
228		default:
229		break;
230		}
231		}
232		} else {
233		_e( 'You need to login to edit your profile.', 'give' );
234		echo give_login_form();
		0 ignored issues – show introduced 2017-07-29 03:17 UTC by Report Bug Copy Issue Report Show Similar Issues like this Expected a sanitizing function (see Codex for 'Data Validation'), but instead saw 'give_login_form' Loading history...
235		}
236		endif;
237

ravinderk / Give

Issues (4335)

Security Analysis not enabled

templates/shortcode-profile-editor.php (21 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like