Unescaped parameter $affiliates_attributes_table used in $wpdb->get_var($wpdb->prepare(\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t"SELECT attr_value FROM $affiliates_attributes_table WHERE affiliate_id = %d AND attr_key = 'paypal_email'",\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t$affiliate_id\n\t\t\t\t\t\t\t\t\t\t\t\t\t))\n$affiliates_attributes_table assigned unsafely at line 1135:\n $affiliates_attributes_table = _affiliates_get_tablename( 'affiliates_attributes' )
Unescaped parameter $affiliates_table used in $wpdb->get_results($wpdb->prepare(\n\t\t"SELECT $affiliates_table.affiliate_id FROM $affiliates_users_table LEFT JOIN $affiliates_table ON $affiliates_users_table.affiliate_id = $affiliates_table.affiliate_id WHERE $affiliates_users_table.user_id = %d AND $affiliates_table.status = %s",\n\t\tintval( $user_id ),\n\t\t$status\n\t))\n$affiliates_table assigned unsafely at line 2099:\n $affiliates_table = _affiliates_get_tablename( 'affiliates' )\n$affiliates_users_table assigned unsafely at line 2100:\n $affiliates_users_table = _affiliates_get_tablename( 'affiliates_users' )
Unescaped parameter $affiliates_table used in $wpdb->get_row($wpdb->prepare(\n\t\t"SELECT * FROM $affiliates_table WHERE affiliate_id = %d",\n\t\tintval( $affiliate_id ) ))\n$affiliates_table assigned unsafely at line 248:\n $affiliates_table = _affiliates_get_tablename( 'affiliates' )
Affected Plugins
Plugins that have instances of this rule violation
Unescaped parameter $affiliates_table used in $wpdb->get_var($wpdb->prepare(\n\t\t\t"SELECT status FROM $affiliates_table WHERE affiliate_id = %d",\n\t\t\tintval( $affiliate_id )\n\t\t))\n$affiliates_table assigned unsafely at line 2194:\n $affiliates_table = _affiliates_get_tablename( 'affiliates' )
Unescaped parameter $affiliates_table used in $wpdb->get_var("SELECT COUNT(affiliate_id) FROM $affiliates_table WHERE type = '" . AFFILIATES_DIRECT_TYPE . "';")\n$affiliates_table assigned unsafely at line 329:\n $affiliates_table = _affiliates_get_tablename('affiliates')