Unescaped parameter $pro_table used in $wpdb->get_var("SELECT COUNT(*) FROM $pro_table")\n$pro_table assigned unsafely at line 64:\n $pro_table\t\t= $wpdb->prefix . "fsb_images"\n$rowcount assigned unsafely at line 69:\n $rowcount\t= $wpdb->get_var( "SELECT COUNT(*) FROM $pro_table" )
Unescaped parameter $pro_table used in $wpdb->get_var("show tables like '$pro_table'")\n$pro_table assigned unsafely at line 64:\n $pro_table\t\t= $wpdb->prefix . "fsb_images"\n$rowcount used without escaping.
Affected Plugins
Plugins that have instances of this rule violation