Unescaped parameter $column_output used in $wpdb->get_results("SELECT $column_output FROM $this->db_name ORDER BY domain , url")\n$column_output assigned unsafely at line 14:\n $column_output\t=\timplode(',', $column_diff )\n$column_diff assigned unsafely at line 13:\n $column_diff\t=\tarray_diff($column_all, $column_omit )\n$column_all assigned unsafely at line 12:\n $column_all\t\t=\tarray_keys($result[0] )\n$result[0] used without escaping.
Unescaped parameter $sql used in $wpdb->get_row($sql)\n$sql assigned unsafely at line 134:\n $sql\t\t\t.=\t"FROM $this->db_name"
Unescaped parameter $sql used in $wpdb->query($sql)\n$sql assigned unsafely at line 46:\n $sql\t=\t"DROP TABLE IF EXISTS ".$table_name
Unescaped parameter $this->db_name used in $wpdb->get_col("DESC $this->db_name")
Unescaped parameter $this->db_name used in $wpdb->get_results($wpdb->prepare("SELECT url,alive_time FROM $this->db_name WHERE alive_nexttime < %d ORDER BY alive_time ASC, id ASC", $this->now ))
Affected Plugins
Plugins that have instances of this rule violation