Product Price History for WooCommerce

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$product".

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$count'.

The $text text string should have translatable content. Found: ' '

The $text text string should have translatable content. Found: ''

Unescaped parameter $currency_rule used in $wpdb->get_results($wpdb->prepare( "SELECT * FROM {$table_name} WHERE product_id = %d {$currency_rule} {$hidden_rule} AND date_created >= %s ORDER BY date_created ASC", $product_id, date( 'Y-m-d', strtotime( $str_range ) ) ))\n$currency_rule assigned unsafely at line 188:\n $currency_rule = ''\n$price_history assigned unsafely at line 194:\n $price_history = $wpdb->get_results( $wpdb->prepare( "SELECT * FROM {$table_name} WHERE product_id = %d {$currency_rule} {$hidden_rule} AND date_created >= %s ORDER BY date_created ASC", $product_id, date( 'Y-m-d', strtotime( $str_range ) ) ), ARRAY_A )\n$product_id used without escaping.\n$str_range assigned unsafely at line 193:\n $str_range = '-' . str_replace( '_', ' ', $range )\n$range assigned unsafely at line 183:\n $range = $args['range'] ?? ''\n$args['range'] used without escaping.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$label'.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$this'.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$html'.

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$form_id'.