Unescaped parameter $sql used in $wpdb->get_row($sql)\n$sql assigned unsafely at line 64:\n $sql = "SHOW TABLES LIKE '" . $wpdb->prefix . "sfm_redirects'"\n$tableExist assigned unsafely at line 65:\n $tableExist = $wpdb->get_row($sql)
Unescaped parameter $sql used in $wpdb->query($sql)\n$sql assigned unsafely at line 189:\n $sql = "UPDATE " . $table_name . " SET feed_url = CONCAT(feed_url, '/rss') WHERE feed_url NOT LIKE '%/rss'"\n$table_name assigned unsafely at line 181:\n $table_name = $wpdb->prefix . "sfm_redirects"
Unescaped parameter $sql used in $wpdb->query($sql)\n$sql assigned unsafely at line 71:\n $sql = "ALTER TABLE `" . $wpdb->prefix . "sfm_redirects` CHANGE `sf_feedid` `sf_feedid` VARCHAR( 255 ) NOT NULL"\n$sql assigned unsafely at line 64:\n $sql = "SHOW TABLES LIKE '" . $wpdb->prefix . "sfm_redirects'"\n$tableExist assigned unsafely at line 65:\n $tableExist = $wpdb->get_row($sql)
Unescaped parameter $sql used in $wpdb->query($sql)\n$sql assigned unsafely at line 74:\n $sql = "ALTER TABLE `" . $wpdb->prefix . "sfm_redirects` ADD `feedSetup_url` VARCHAR( 255 ) NOT NULL AFTER `rid`"\n$sql assigned unsafely at line 71:\n $sql = "ALTER TABLE `" . $wpdb->prefix . "sfm_redirects` CHANGE `sf_feedid` `sf_feedid` VARCHAR( 255 ) NOT NULL"\n$sql assigned unsafely at line 64:\n $sql = "SHOW TABLES LIKE '" . $wpdb->prefix . "sfm_redirects'"\n$tableExist assigned unsafely at line 65:\n $tableExist = $wpdb->get_row($sql)
Affected Plugins
Plugins that have instances of this rule violation