Filter Orders by Product for WooCommerce

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$key'.

Unescaped parameter $sql used in $wpdb->get_results($sql)\n$sql assigned unsafely at line 28:\n $sql .= ( $status == 'any' ) ? '' : " AND post_status = '$status'"\n$status assigned unsafely at line 26:\n $status = apply_filters( 'wfobp_product_status', 'publish' )

Use placeholders and $wpdb->prepare(); found $sql

load_plugin_textdomain() has been discouraged since WordPress version 4.6. When your plugin is hosted on WordPress.org, you no longer need to manually include this function call for translations under your plugin slug. WordPress will automatically load the translations for you as needed.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$title'.

The plugin slug includes a restricted term. Your plugin slug - "woocommerce-filter-orders-by-product" - contains the restricted term "woocommerce" which cannot be used within in your plugin slug, unless your plugin slug ends with "for woocommerce". The term must still not appear anywhere else in your plugin slug.

Use of a direct database call is discouraged.

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

Processing form data without nonce verification.

Processing form data without nonce verification.