Unescaped parameter $categories_table used in $wpdb->get_var("SELECT COUNT(*) FROM " . $categories_table . " WHERE `title`='Uncategorized'")\n$categories_table assigned unsafely at line 39:\n $categories_table = $wpdb->prefix . 'ays_pb_categories'
Unescaped parameter $field used in $wpdb->get_col("SELECT {$field} FROM {$table}")\n$field assigned unsafely at line 38:\n $field = 'blog_id'\n$table assigned unsafely at line 39:\n $table = $wpdb->prefix.'blogs'\n$blog_id used without escaping.
Unescaped parameter $ids used in $wpdb->query("UPDATE {$wpdb->prefix}em_modals SET is_trash = 0 WHERE id IN ($ids)")\n$ids assigned unsafely at line 109:\n $ids = $this->request_ids()
Unescaped parameter $ids used in $wpdb->query("UPDATE {$wpdb->prefix}em_modals SET is_trash = 1 WHERE id IN (" . implode( ',', $ids ) . ")")\n$ids assigned unsafely at line 91:\n $ids = $this->request_ids()
Unescaped parameter $pb_categories used in $wpdb->query("DROP TABLE IF EXISTS `" . $pb_categories . "`")\n$pb_categories assigned unsafely at line 36:\n $pb_categories = $wpdb->prefix . 'ays_pb_categories'\n$settings_table assigned unsafely at line 37:\n $settings_table = $wpdb->prefix . 'ays_pb_settings'\n$pb_table assigned unsafely at line 35:\n $pb_table = $wpdb->prefix . 'ays_pb'
Affected Plugins
Plugins that have instances of this rule violation