Name: SupportCandy – Helpdesk & Customer Support Ticket System
Rating: 4.9
Author: PSM Plugins

Top Issues by File

Files with the highest concentration of issues in the latest scan

Issues Details

1670 issues found in latest scan

	Code	Message	Location	Category
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found $response	`upgrade/class-wpsc-upgrade-db-v1.php:1483:81`	Security
ERROR	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $response['slug'] used in $wpdb->query("ALTER TABLE {$wpdb->prefix}psmsc_tickets ADD " . $response['slug'] . ' TINYTEXT NULL')\n$response['slug'] used without escaping.	`upgrade/class-wpsc-upgrade-db-v1.php:1501:15`	Security
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found id	`includes/admin/settings/class-wpsc-ticket-categories.php:553:68`	Security
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found $id	`includes/models/class-wpsc-archive-ticket.php:114:99`	Security
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found $sql	`includes/models/class-wpsc-option.php:369:35`	Security
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found $response	`upgrade/class-wpsc-upgrade-db-v1.php:1501:72`	Security
ERROR	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $response['slug'] used in $wpdb->query("ALTER TABLE {$wpdb->prefix}psmsc_archived_tickets ADD " . $response['slug'] . ' TINYTEXT NULL')\n$response['slug'] used without escaping.	`upgrade/class-wpsc-upgrade-db-v1.php:1502:15`	Security
ERROR	`WordPress.DB.PreparedSQL.NotPrepared`	Use placeholders and $wpdb->prepare(); found $response	`upgrade/class-wpsc-upgrade-db-v2.php:1884:73`	Security
ERROR	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $response['slug'] used in $wpdb->query("ALTER TABLE {$wpdb->prefix}psmsc_archived_tickets ADD " . $response['slug'] . ' BIGINT NULL DEFAULT 0')\n$response['slug'] used without escaping.	`upgrade/class-wpsc-upgrade-db-v2.php:1885:16`	Security
ERROR	`PluginCheck.Security.DirectDB.UnescapedDBParameter`	Unescaped parameter $sql used in $wpdb->get_var($sql . $where)\n$sql assigned unsafely at line 372:\n $sql = 'SELECT count(id) FROM ' . $wpdb->prefix . 'psmsc_options '\n$sql assigned unsafely at line 368:\n $sql = $sql . $where . $order\n$sql assigned unsafely at line 358:\n $sql = 'SELECT * FROM ' . $wpdb->prefix . 'psmsc_options '\n$total_items assigned unsafely at line 373:\n $total_items = $wpdb->get_var( $sql . $where )\n$where assigned unsafely at line 359:\n $where = self::get_where( $filter )\n$filter used without escaping.	`includes/models/class-wpsc-option.php:373:26`	Security

1670 total row(s)


24.12.2025, 06:31:58	1m 53s	1	447	1223
23.11.2025, 08:00:55	2m 5s	1	447	1224
21.11.2025, 10:32:51	2m 44s	1	447	1224
13.11.2025, 14:43:12	2m 58s	1	364	1038

SupportCandy – Helpdesk & Customer Support Ticket System

Security1472

Performance149

Plugin Repository47

General1

upgrade/class-wpsc-upgrade-db-v2.php413 issues in this fileTotal: 413Errors: 101Warnings: 312

upgrade/class-wpsc-upgrade-db-v1.php293 issues in this fileTotal: 293Errors: 68Warnings: 225

class-wpsc-installation.php102 issues in this fileTotal: 102Errors: 4Warnings: 98

upgrade/functions.php93 issues in this fileTotal: 93Errors: 38Warnings: 55

includes/models/class-wpsc-archive-ticket.php66 issues in this fileTotal: 66Errors: 9Warnings: 57

includes/models/class-wpsc-custom-field.php65 issues in this fileTotal: 65Errors: 9Warnings: 56

includes/models/class-wpsc-ticket.php34 issues in this fileTotal: 34Errors: 9Warnings: 25

includes/models/class-wpsc-archive-thread.php31 issues in this fileTotal: 31Errors: 13Warnings: 18

includes/models/class-wpsc-thread.php31 issues in this fileTotal: 31Errors: 13Warnings: 18

includes/models/class-wpsc-holiday.php31 issues in this fileTotal: 31Errors: 11Warnings: 20