WP-DownloadManager

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$base_page".

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$file_path".

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$file_categories".

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$file_type".

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$file".

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$total_pages".

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$files".

Unescaped parameter $file_search_query used in $wpdb->get_results("SELECT * FROM $wpdb->downloads WHERE 1=1 $file_search_query ORDER BY $file_sortby $file_sortorder LIMIT $offset, $file_perpage")\n$file_search_query assigned unsafely at line 40:\n $file_search_query = "AND (file LIKE ('%$file_search%') OR file_name LIKE('%$file_search%') OR file_des LIKE ('%$file_search%'))"\n$file_sortby assigned unsafely at line 85:\n $file_sortby = 'file_name'\n$file_sortorder assigned unsafely at line 98:\n $file_sortorder = 'ASC'\n$file_search assigned unsafely at line 22:\n $file_search = ! empty( $_GET['search'] ) ? sanitize_text_field( $_GET['search'] ) : 0\nNote: sanitize_text_field() is not a safe escaping function.\n$file_sortby_text assigned unsafely at line 86:\n $file_sortby_text = __('File Name', 'wp-downloadmanager')\n$file_sortorder_text assigned unsafely at line 99:\n $file_sortorder_text = __('Ascending', 'wp-downloadmanager')\n$_GET['search'] used without escaping.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'stripslashes'.