UnescapedDBParameter

Unescaped parameter $query used in $wpdb->get_results($query)\n$query assigned unsafely at line 101:\n $query = "SELECT posts.*, canonical.meta_value AS canonical FROM ($posts_query) AS posts " .\n\t\t\t\t"LEFT OUTER JOIN $wpdb->postmeta AS canonical ON ID = canonical.post_id AND canonical.meta_key = '_wds_canonical'"\n$posts_query assigned unsafely at line 96:\n $posts_query = $this->prepare_posts_query( $columns )\n$columns assigned unsafely at line 91:\n $columns = array_merge(\n\t\t\t$columns,\n\t\t\t$this->get_extra_columns()\n\t\t)

Unescaped parameter $query used in $wpdb->get_results($wpdb->prepare( $query, ...$kws ))\n$query assigned unsafely at line 63:\n $query = "SELECT post_id, meta_value FROM $wpdb->postmeta WHERE meta_key = '_wds_focus-keywords' AND post_id != $subject_id AND $likes ORDER BY post_id DESC"\n$subject_id assigned unsafely at line 60:\n $subject_id = $this->get_subject_post_id( $subject )\n$likes assigned unsafely at line 62:\n $likes = join( ' AND ', $likes_array )\n$subject assigned unsafely at line 59:\n $subject = $this->get_subject()\n$likes_array assigned unsafely at line 55:\n $likes_array[] = 'meta_value LIKE %s'\n$kws[$kw_id] assigned unsafely at line 56:\n $kws[ $kw_id ] = $wild . $wpdb->esc_like( $kw ) . $wild\n$kw_id assigned unsafely at line 54:\n $kw_id => \n$wild assigned unsafely at line 52:\n $wild = '%'\n$kw used without escaping.\n$likes_array[] used without escaping.