Unescaped parameter $text used in $wpdb->get_results("SELECT ID, post_title, post_content FROM {$wpdb->posts} WHERE post_type<>'revision' AND post_content LIKE '%{$text}%'")\n$text assigned unsafely at line 907:\n $text => \n$posts assigned unsafely at line 908:\n $posts = $wpdb->get_results( "SELECT ID, post_title, post_content FROM {$wpdb->posts} WHERE post_type<>'revision' AND post_content LIKE '%{$text}%'" )
Unescaped parameter $text used in $wpdb->get_results("SELECT comment_ID, comment_author, comment_content FROM {$wpdb->comments} WHERE comment_content LIKE '%{$text}%'")\n$text assigned unsafely at line 907:\n $text => \n$posts assigned unsafely at line 908:\n $posts = $wpdb->get_results( "SELECT ID, post_title, post_content FROM {$wpdb->posts} WHERE post_type<>'revision' AND post_content LIKE '%{$text}%'" )
Affected Plugins
Plugins that have instances of this rule violation