Unescaped parameter $get_recent used in $wpdb->get_row($get_recent)\n$get_recent assigned unsafely at line 205:\n $get_recent = "SELECT qid FROM {$table} ORDER BY qid DESC "\n$table assigned unsafely at line 161:\n $table = $prefix.'question'\n$columns assigned unsafely at line 162:\n $columns = $wpdb->get_col("DESC {$table}", 0 )
Unescaped parameter $get_status used in $wpdb->get_row($get_status)\n$get_status assigned unsafely at line 196:\n $get_status = "SHOW TABLE STATUS LIKE '".$table."' "\n$table assigned unsafely at line 161:\n $table = $prefix.'question'\n$columns assigned unsafely at line 162:\n $columns = $wpdb->get_col("DESC {$table}", 0 )
Unescaped parameter $query used in $wpdb->get_results($query)\n$query assigned unsafely at line 1006:\n $query = "SELECT * FROM {$table} "\n\t\t\t\t."WHERE 1 "\n$table assigned unsafely at line 1005:\n $table = $prefix.'set'
Unescaped parameter $query used in $wpdb->get_results($query)\n$query assigned unsafely at line 1059:\n $query = "SELECT * FROM {$table} "\n\t\t\t\t."WHERE sid=".$sid." "\n\t\t\t\t."ORDER BY qnum ASC "\n$table assigned unsafely at line 1058:\n $table = $prefix.'question'\n$sid used without escaping.
Affected Plugins
Plugins that have instances of this rule violation
Unescaped parameter $query used in $wpdb->get_results($query)\n$query assigned unsafely at line 134:\n $query = "SELECT sid, COUNT(*) as num FROM {$table} "\n\t\t\t\t\t."WHERE 1 "\n\t\t\t\t\t."GROUP BY sid "\n$table assigned unsafely at line 133:\n $table = $prefix.'question'