78% quttera-web-malware-scanner

Code Review | Quttera Web Malware Scanner

WordPress plugin Quttera Web Malware Scanner scored78%from 54 tests.

About plugin

  • Plugin page: quttera-web-malwa...
  • Plugin version: 3.4.2.7
  • PHP version: 7.4.16
  • WordPress compatibility: 3.3.2-6.4.1
  • WordPress version: 6.3.1
  • First release: Jun 7, 2012
  • Latest release: Dec 1, 2023
  • Number of updates: 1,659
  • Update frequency: every 2.5 days
  • Top authors: Quttera (100%)

Code review

54 tests

User reviews

45 reviews

Install metrics

10,000+ active /3,036,747 total downloads

Benchmarks

Plugin footprint 83% from 16 tests

Installer Passed 1 test

🔺 Critical test (weight: 50) | All plugins must install correctly, without throwing any errors, warnings, or notices
Install script ran successfully

Server metrics [RAM: ▲0.55MB] [CPU: ▼5.59ms] Passed 4 tests

An overview of server-side resources used by Quttera Web Malware Scanner
This plugin does not affect your website's performance
PageMemory (MB)CPU Time (ms)
Home /4.01 ▲0.5539.29 ▼0.65
Dashboard /wp-admin3.86 ▲0.5652.62 ▲4.72
Posts /wp-admin/edit.php3.91 ▲0.5548.51 ▼1.86
Add New Post /wp-admin/post-new.php6.44 ▲0.5586.04 ▼24.58
Media Library /wp-admin/upload.php3.78 ▲0.5542.66 ▲5.86
FAQ /wp-admin/admin.php?page=quttera_wm_scanner_faq3.6933.86
Internal Scanner /wp-admin/admin.php?page=quttera_wm_scanner_int3.7534.94
External Scanner /wp-admin/admin.php?page=quttera_wm_scanner3.7242.67
Internal Scanner - High Sensitivity /wp-admin/admin.php?page=quttera_wm_scanner_heur_int3.7541.42

Server storage [IO: ▲2.93MB] [DB: ▲0.00MB] Passed 3 tests

Analyzing filesystem and database footprints of this plugin
The plugin installed successfully
Filesystem: 57 new files
Database: no new tables, 6 new options
New WordPress options
widget_recent-posts
can_compress_scripts
db_upgraded
widget_theysaidso_widget
theysaidso_admin_options
widget_recent-comments

Browser metrics Passed 4 tests

A check of browser resources used by Quttera Web Malware Scanner
This plugin has a minimal impact on browser resources
PageNodesMemory (MB)Script (ms)Layout (ms)
Home /2,816 ▲5414.30 ▼0.081.60 ▼0.1836.58 ▼7.57
Dashboard /wp-admin2,216 ▲395.52 ▼0.1194.98 ▼8.3477.62 ▲35.63
Posts /wp-admin/edit.php2,142 ▲421.98 ▼0.0435.31 ▼7.4533.48 ▼4.96
Add New Post /wp-admin/post-new.php1,709 ▲18322.07 ▼1.46812.17 ▲140.5351.27 ▼1.73
Media Library /wp-admin/upload.php1,436 ▲364.09 ▼0.08110.75 ▲6.2878.57 ▲34.18
FAQ /wp-admin/admin.php?page=quttera_wm_scanner_faq9102.1223.6826.32
Internal Scanner /wp-admin/admin.php?page=quttera_wm_scanner_int1,7129.47335.2473.21
External Scanner /wp-admin/admin.php?page=quttera_wm_scanner1,6219.46291.7246.04
Internal Scanner - High Sensitivity /wp-admin/admin.php?page=quttera_wm_scanner_heur_int1,7199.37306.5246.79

Uninstaller [IO: ▲0.00MB] [DB: ▲0.00MB] 75% from 4 tests

🔸 Tests weight: 35 | Verifying that this plugin uninstalls completely without leaving any traces
Please fix the following items
  • Zombie WordPress options were found after uninstall: 6 options
    • widget_recent-comments
    • widget_theysaidso_widget
    • db_upgraded
    • can_compress_scripts
    • theysaidso_admin_options
    • widget_recent-posts

Smoke tests 50% from 4 tests

Server-side errors Passed 1 test

🔹 Test weight: 20 | This is a shallow check for server-side errors
Everything seems fine, however this is by no means an exhaustive test

SRP 0% from 2 tests

🔹 Tests weight: 20 | The single-responsibility principle applies for WordPress plugins as well - please make sure your PHP files perform no actions when accessed directly
Please fix the following items
  • 1× PHP files output text when accessed directly:
    • > /wp-content/plugins/quttera-web-malware-scanner/admin_script.php
  • 22× PHP files trigger server errors when accessed directly (only 10 are shown):
    • > PHP Fatal error
      Uncaught Error: Call to undefined function add_filter() in wp-content/plugins/quttera-web-malware-scanner/qtrAjaxHandler.php:40
    • > PHP Warning
      include(ABSPATHwp-includes/version.php): failed to open stream: No such file or directory in wp-content/plugins/quttera-web-malware-scanner/qtrFilesScanner.php on line 36
    • > PHP Warning
      include(ABSPATHwp-includes/version.php): failed to open stream: No such file or directory in wp-content/plugins/quttera-web-malware-scanner/qtrFilesScanner.php on line 36
    • > PHP Fatal error
      Uncaught Error: Call to undefined function LoadOption() in wp-content/plugins/quttera-web-malware-scanner/qtrOptions.php:159
    • > PHP Fatal error
      Uncaught Error: Call to undefined function plugins_url() in wp-content/plugins/quttera-web-malware-scanner/heur_internal_scan_page.php:7
    • > PHP Warning
      include(): Failed opening 'ABSPATHwp-includes/version.php' for inclusion (include_path='.:/usr/share/php') in wp-content/plugins/quttera-web-malware-scanner/qtrFilesScanner.php on line 36
    • > PHP Fatal error
      Uncaught Error: Call to undefined function add_filter() in wp-content/plugins/quttera-web-malware-scanner/qtrAjaxHandler.php:40
    • > PHP Warning
      include(wp-content/plugins/quttera-web-malware-scanner/wp-includes/version.php): failed to open stream: No such file or directory in wp-content/plugins/quttera-web-malware-scanner/qtrFilesScanner.php on line 36
    • > PHP Warning
      include(): Failed opening 'wp-content/plugins/quttera-web-malware-scanner/wp-includes/version.php' for inclusion (include_path='.:/usr/share/php') in wp-content/plugins/quttera-web-malware-scanner/qtrFilesScanner.php on line 36
    • > PHP Fatal error
      Uncaught Error: Call to undefined function plugins_url() in wp-content/plugins/quttera-web-malware-scanner/faq_page.php:5

User-side errors Passed 1 test

🔹 Test weight: 20 | This is a smoke test targeting browser errors/issues
No browser issues were found

Optimizations

Plugin configuration 93% from 29 tests

readme.txt 94% from 16 tests

Often overlooked, readme.txt is one of the most important files in your plugin
Please fix the following attributes:
  • Tags: Please reduce the number of tags, currently 11 tag instead of maximum 10
The official readme.txt might help

quttera-web-malware-scanner/quttera_wm_scanner.php 92% from 13 tests

The principal PHP file in "Quttera Web Malware Scanner" v. 3.4.2.7 is loaded by WordPress automatically on each request
You should first fix the following items:
  • Main file name: The principal plugin file should be the same as the plugin slug ("quttera-web-malware-scanner.php" instead of "quttera_wm_scanner.php")

Code Analysis Passed 3 tests

File types Passed 1 test

🔸 Test weight: 35 | This is a short overview of programming languages used in this plugin, detecting executable files
Everything looks great! No dangerous files found in this plugin48,034 lines of code in 33 files:
LanguageFilesBlank linesComment linesLines of code
Mathematica10034,283
CSS215126,739
PHP281,2311,4485,423
JavaScript25821991,589

PHP code Passed 2 tests

An short overview of logical lines of code, cyclomatic complexity, and other code metrics
Although this was not an exhaustive test, there were no cyclomatic complexity issues detected
Cyclomatic complexity
Average complexity per logical line of code0.24
Average class complexity18.50
▷ Minimum class complexity2.00
▷ Maximum class complexity66.00
Average method complexity2.77
▷ Minimum method complexity1.00
▷ Maximum method complexity16.00
Code structure
Namespaces0
Interfaces0
Traits0
Classes18
▷ Abstract classes00.00%
▷ Concrete classes18100.00%
▷ Final classes00.00%
Methods178
▷ Static methods4123.03%
▷ Public methods14078.65%
▷ Protected methods3217.98%
▷ Private methods63.37%
Functions26
▷ Named functions26100.00%
▷ Anonymous functions00.00%
Constants20
▷ Global constants20100.00%
▷ Class constants00.00%
▷ Public constants00.00%

Plugin size 50% from 2 tests

Image compression 50% from 2 tests

All PNG images should be compressed to minimize bandwidth usage for end users
16 PNG files occupy 0.84MB with 0.54MB in potential savings
Potential savings
Compression of 5 random PNG files using pngquant
FileSize - originalSize - compressedSavings
screenshot-1.png74.67KB36.01KB▼ 51.78%
icon128x128.png33.18KB9.47KB▼ 71.47%
assets/outside-in-external-scanner.png81.91KB28.28KB▼ 65.48%
assets/banner-772x250.png37.92KB14.81KB▼ 60.96%
icon.png33.18KB9.47KB▼ 71.47%