Unescaped parameter $boards used in $wpdb->get_results($wpdb->prepare(\r\n "SELECT boardid FROM {$boards}"\r\n ))\n$boards assigned unsafely at line 30:\n $boards = WPF()->tables->boards
Unescaped parameter $boards used in $wpdb->get_results($wpdb->prepare(\r\n "SELECT boardid FROM {$boards}"\r\n ))\n$boards assigned unsafely at line 84:\n $boards = WPF()->tables->boards
Unescaped parameter $count_query used in $wpdb->get_var($wpdb->prepare( $count_query, $user->ID ))\n$count_query assigned unsafely at line 52:\n $count_query = str_replace( "DELETE", "SELECT COUNT(*)", $query )\n$query assigned unsafely at line 51:\n $query = "DELETE FROM {$logs} WHERE user_id = %d"\n$logs assigned unsafely at line 48:\n $logs = GamiPress()->db->logs
Unescaped parameter $count_query used in $wpdb->get_var($wpdb->prepare( $count_query, $user->ID ))\n$count_query assigned unsafely at line 52:\n $count_query = str_replace( "DELETE", "SELECT COUNT(*)", $query )\n$query assigned unsafely at line 51:\n $query = "DELETE FROM {$user_earnings} WHERE user_id = %d"\n$user_earnings assigned unsafely at line 48:\n $user_earnings = GamiPress()->db->user_earnings
Affected Plugins
Plugins that have instances of this rule violation
Unescaped parameter $count_query used in $wpdb->get_var($wpdb->prepare( $count_query, $user->ID ))\n$count_query assigned unsafely at line 52:\n $count_query = str_replace( "SELECT *", "SELECT COUNT(*)", $query )\n$query assigned unsafely at line 51:\n $query = "SELECT * FROM {$logs} WHERE user_id = %d"\n$logs assigned unsafely at line 48:\n $logs = GamiPress()->db->logs