WP Open Street Map

Use placeholders and $wpdb->prepare(); found $q

Use placeholders and $wpdb->prepare(); found $sql

Use placeholders and $wpdb->prepare(); found $q

Use placeholders and $wpdb->prepare(); found $q

Unescaped parameter $query used in $wpdb->query($query)\n$query assigned unsafely at line 400:\n $query = $wpdb->prepare( $q, intval($_GET['id']))\n$q assigned unsafely at line 398:\n $q = "DELETE FROM ".$maps_markers_table." WHERE id_map = %d"\n$maps_markers_table assigned unsafely at line 180:\n $maps_markers_table = $wpdb->prefix . "wp_openstreetmap_markers"\n$_GET['task'] used without escaping.\n$_REQUEST['_wpnonce'] used without escaping.\n$_POST used without escaping.\n$maps_table assigned unsafely at line 178:\n $maps_table = $wpdb->prefix . "wp_openstreetmap"

Use placeholders and $wpdb->prepare(); found $query

Use placeholders and $wpdb->prepare(); found $q

Use placeholders and $wpdb->prepare(); found $sql

Use placeholders and $wpdb->prepare(); found $q

Unescaped parameter $query used in $wpdb->get_row($query)\n$query assigned unsafely at line 302:\n $query = $wpdb->prepare( $q, $_GET['id'])\n$q assigned unsafely at line 300:\n $q = "SELECT * FROM ".$maps_table." WHERE id = %d"\n$maps_table assigned unsafely at line 178:\n $maps_table = $wpdb->prefix . "wp_openstreetmap"\n$maps_markers_table assigned unsafely at line 180:\n $maps_markers_table = $wpdb->prefix . "wp_openstreetmap_markers"\n$_GET['task'] used without escaping.\n$_REQUEST['_wpnonce'] used without escaping.\n$_POST used without escaping.