WP Visitor Statistics (Real Time Traffic)

Unescaped parameter $sql used in $wpdb->get_var($sql)\n$sql assigned unsafely at line 1308:\n $sql = 'SELECT count(*) FROM INFORMATION_SCHEMA.VIEWS WHERE table_schema = "' . DB_NAME . '" AND table_name LIKE "%_wsm%"'\n$exist assigned unsafely at line 1310:\n $exist = $wpdb->get_var($sql)

Use placeholders and $wpdb->prepare(); found self

Unescaped parameter self::$tablePrefix . '_visitorInfo') used in $wpdb->query('DROP VIEW IF EXISTS ' . self::$tablePrefix . '_visitorInfo')

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'WSM_URL'.

Use placeholders and $wpdb->prepare(); found self

Use placeholders and $wpdb->prepare(); found $tablePrefix

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$urlReferrer'.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'site_url'.

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found 'get_current_user_id'.

Use placeholders and $wpdb->prepare(); found $tablePrefix