Unescaped parameter $cacheInstance->get_db_table_name() used in $wpdb->get_row($wpdb->prepare(\n "SELECT message_content FROM {$cacheInstance->get_db_table_name()} WHERE cache_key = %s AND expires_at > %s LIMIT 1",\n $key,\n $now_utc\n ))
Unescaped parameter $cacheInstance->get_db_table_name() used in $wpdb->get_var($wpdb->prepare("SELECT 1 FROM {$cacheInstance->get_db_table_name()} WHERE cache_key = %s LIMIT 1", $key))
Unescaped parameter $count_sql used in $wpdb->get_var($count_sql)\n$count_sql assigned unsafely at line 332:\n $count_sql = $this->wpdb->prepare(\n "SELECT COUNT(*) FROM {$this->log_table_name} WHERE last_message_ts >= %d AND last_message_ts <= %d",\n $timestamp_threshold_start,\n $timestamp_threshold_end\n )
Unescaped parameter $data_source_table_name used in $wpdb->get_results($wpdb->prepare("SELECT id, timestamp, status, message, indexed_content, post_id, embedding_provider, embedding_model, file_id, batch_id FROM {$data_source_table_name} WHERE provider = %s AND vector_store_id = %s ORDER BY timestamp DESC LIMIT %d OFFSET %d", $provider, $store_id, $logs_per_page, $offset))\n$data_source_table_name assigned unsafely at line 29:\n $data_source_table_name = $handler_instance->get_data_source_table_name()\nNote: sanitize_key() is not a safe escaping function.\n$post_data['provider'] used without escaping.