UnescapedDBParameter

Unescaped parameter $arrSQL['insert'] used in $wpdb->query($arrSQL['insert'])\n$arrSQL['insert'] used without escaping.

Unescaped parameter $checkSQL used in $wpdb->get_var($checkSQL)\n$checkSQL assigned unsafely at line 1970:\n $checkSQL = "show tables like '" . self::$tablePrefix . "{$tableName}'"\n$tablePrefix used without escaping.

Unescaped parameter $sql used in $wpdb->get_var($sql)\n$sql assigned unsafely at line 1308:\n $sql = 'SELECT count(*) FROM INFORMATION_SCHEMA.VIEWS WHERE table_schema = "' . DB_NAME . '" AND table_name LIKE "%_wsm%"'\n$exist assigned unsafely at line 1310:\n $exist = $wpdb->get_var($sql)

Unescaped parameter $sql used in $wpdb->get_var($sql)\n$sql assigned unsafely at line 1352:\n $sql = 'SELECT count(*) FROM INFORMATION_SCHEMA.VIEWS WHERE table_schema = "' . DB_NAME . '" AND table_name IN ( "' . self::$tablePrefix . '_pageViews", "' . self::$tablePrefix . '_uniqueVisitors", "' . self::$tablePrefix . '_bounceVisits", "' . self::$tablePrefix . '_visitorInfo", "' . self::$tablePrefix . '_monthWiseVisitors", "' . self::$tablePrefix . '_monthWisePageViews", "' . self::$tablePrefix . '_monthWiseFirstVisitors", "' . self::$tablePrefix . '_monthWiseBounce", "' . self::$tablePrefix . '_monthWiseBounceRate", "' . self::$tablePrefix . '_dateWiseVisitors", "' . self::$tablePrefix . '_dateWiseFirstVisitors", "' . self::$tablePrefix . '_dateWisePageViews", "' . self::$tablePrefix . '_dateWiseBounce", "' . self::$tablePrefix . '_dateWiseBounceRate", "' . self::$tablePrefix . '_hourWiseBounce", "' . self::$tablePrefix . '_hourWiseBounceRate", "' . self::$tablePrefix . '_hourWiseFirstVisitors", "' . self::$tablePrefix . '_hourWisePageViews", "' . self::$tablePrefix . '_hourWiseVisitors" )'\n$tablePrefix used without escaping.