LONG URL MAKER

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$now_version".

Use placeholders and $wpdb->prepare(); found $check_sql

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "wp_unique_post_slug_is_bad_attachment_slug".

Unescaped parameter $sql_backup used in $wpdb->query($sql_backup)\n$sql_backup assigned unsafely at line 147:\n $sql_backup= "INSERT INTO ".$wpdb->prefix . 'kpcode_url_posts'." (`id` ,`kpcode_post_id` ,`kpcode_post_name` ,`kpcode_type`\r\n)VALUES(NULL , '$post->ID', '$backup_postname', 'posts');"\n$post->ID used without escaping.\n$backup_postname assigned unsafely at line 145:\n $backup_postname=$post->post_name\n$post->post_name used without escaping.

Use placeholders and $wpdb->prepare(); found $sql_backup

Unescaped parameter $sql_backup_new used in $wpdb->query($sql_backup_new)\n$sql_backup_new assigned unsafely at line 385:\n $sql_backup_new= "INSERT INTO ".$wpdb->prefix . 'kpcode_url_posts'." (`id` ,`kpcode_post_id` ,`kpcode_post_name` ,`kpcode_type` )VALUES(NULL , '".$post_id."', '".$post_kpcode->post_name."', 'posts');"\n$post_id used without escaping.\n$post_kpcode->post_name used without escaping.

Use placeholders and $wpdb->prepare(); found $sql_backup_new

Use placeholders and $wpdb->prepare(); found $check_sql

Unescaped parameter $sql_restore used in $wpdb->query($sql_restore)\n$sql_restore assigned unsafely at line 197:\n $sql_restore= "UPDATE ".$wpdb->posts." SET post_name ='$restore_name' WHERE ID ='$posts->kpcode_post_id'"\n$restore_name assigned unsafely at line 195:\n $restore_name = $posts->kpcode_post_name\n$posts->kpcode_post_id used without escaping.\n$posts->kpcode_post_name used without escaping.

Unescaped parameter $term_id used in $wpdb->get_var("SELECT taxonomy FROM ".$wpdb->term_taxonomy." WHERE term_id = '$term_id'")\n$term_id used without escaping.