BetterLinks – An Advanced Plugin for Affiliate Links, Link Shortening, Link Tracking, Link Branding & Marketing

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

Unescaped parameter $query used in $wpdb->get_results($query)\n$query assigned unsafely at line 207:\n $query = $wpdb->prepare(\n\t\t\t\t"SELECT c.ID, c.link_id, c.ip, c.browser, c.referer, c.created_at\n\t\t\t\t FROM {$clicks_table} c\n\t\t\t\t WHERE c.link_id=%d AND c.created_at BETWEEN %s AND %s\n\t\t\t\t ORDER BY c.created_at DESC",\n\t\t\t\t$id,\n\t\t\t\t$from . ' 00:00:00',\n\t\t\t\t$to . ' 23:59:59'\n\t\t\t)\n$clicks_table assigned unsafely at line 186:\n $clicks_table = $wpdb->prefix . 'betterlinks_clicks'\n$countries_table assigned unsafely at line 187:\n $countries_table = $wpdb->prefix . 'betterlinks_countries'\n$is_extra_data_tracking_compatible assigned unsafely at line 190:\n $is_extra_data_tracking_compatible = apply_filters( 'betterlinks/is_extra_data_tracking_compatible', false )

Use placeholders and $wpdb->prepare(); found $query

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

Use placeholders and $wpdb->prepare(); found $query

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$nonce'.

Unescaped parameter $query used in $wpdb->get_row($query)\n$query assigned unsafely at line 266:\n $query = "SELECT COUNT( DISTINCT ip ) AS count FROM {$wpdb->prefix}betterlinks_clicks WHERE created_at BETWEEN '{$from} 00:00:00' AND '{$to} 23:59:59'"\n$from used without escaping.\n$to used without escaping.

Use placeholders and $wpdb->prepare(); found $query