SMTP for SendGrid – YaySMTP

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$yayStatusNotsendChecked".

The $text parameter must be a single text string literal. Found: $disPlayText

Use placeholders and $wpdb->prepare(); found sanitize_sql_orderby

Use placeholders and $wpdb->prepare(); found $sortField

Use placeholders and $wpdb->prepare(); found $sortVal

Use placeholders and $wpdb->prepare(); found sanitize_sql_orderby

Use placeholders and $wpdb->prepare(); found $sortField

Use placeholders and $wpdb->prepare(); found $sortVal

Unescaped parameter $sqlRepare used in $wpdb->get_results($sqlRepare)\n$sqlRepare assigned unsafely at line 202:\n $sqlRepare = $wpdb->prepare(\n\t\t\t\t\t\t"SELECT l.id, l.subject, l.email_from, l.email_to, l.mailer, l.date_time, l.status FROM {$wpdb->prefix}$table AS l WHERE $statusWhere ORDER BY " . sanitize_sql_orderby($sortField . ' ' . $sortVal) . " LIMIT %d OFFSET %d",\n\t\t\t\t\t\t$limit,\n\t\t\t\t\t\t$offset\n\t\t\t\t\t)\n$table assigned unsafely at line 186:\n $table = YAY_SMTP_SENDGRID_PREFIX . '_email_logs'\n$statusWhere assigned unsafely at line 179:\n $statusWhere = 'status <> 1 AND status <> 0 and status <> 2'\n$statusWhere assigned unsafely at line 177:\n $statusWhere = 'status = 0 OR status =2'\n$statusWhere assigned unsafely at line 175:\n $statusWhere = 'status = 1'\n$sortField assigned unsafely at line 167:\n $sortField = ! empty( $params['sortField'] ) ? $params['sortField'] : 'date_time'\n$sortVal assigned unsafely at line 170:\n $sortVal = 'ASC'\n$valSearch assigned unsafely at line 166:\n $valSearch = ! empty( $params['valSearch'] ) ? $params['valSearch'] : ''\n$status assigned unsafely at line 173:\n $status = ! empty( $params['status'] ) ? $params['status'] : $showStatus\n$params['sortField'] used without escaping.\n$params['status'] used without escaping.\n$params['valSearch'] used without escaping.

Use placeholders and $wpdb->prepare(); found $sqlRepare