Back to Codebase

Vulnerability Analysis Report

WordPress Core v7.0

Scan ID: SCAN-WORDPRESS-CORE-gDKGhd • Hash: 9f630746

Severity Score
Critical
Total Findings
100
Engine Version
ECOMGUARD-HYBRID-AST-1.5
Scan Duration
0.862s

Vulnerability Details

L476

Dynamic Code Execution in Parser.php

CWE-94
File Location: wp-includes/SimplePie/src/HTTP/Parser.php:476
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- \assert(\is_int($length), "Length needs to be shorter than PHP_INT_MAX");
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L378

Dynamic Code Execution in IRI.php

CWE-94
File Location: wp-includes/SimplePie/src/IRI.php:378
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- \assert(\is_string($string), "For PHPStan: Should not occur, the regex is valid");
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L382

Dynamic Code Execution in IRI.php

CWE-94
File Location: wp-includes/SimplePie/src/IRI.php:382
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- \assert(\is_string($string), "For PHPStan: Should not occur, the regex is valid");
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L192

Dynamic Code Execution in Locator.php

CWE-94
File Location: wp-includes/SimplePie/src/Locator.php:192
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($this->registry !== null);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L238

Dynamic Code Execution in Locator.php

CWE-94
File Location: wp-includes/SimplePie/src/Locator.php:238
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($this->registry !== null);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L336

Dynamic Code Execution in Locator.php

CWE-94
File Location: wp-includes/SimplePie/src/Locator.php:336
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($this->registry !== null);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L436

Dynamic Code Execution in Parser.php

CWE-94
File Location: wp-includes/SimplePie/src/Parser.php:436
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- \assert(function_exists('Mf2\parse'));
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L292

Dynamic Code Execution in Diff.php

CWE-94
File Location: wp-includes/Text/Diff.php:292
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert(count($from_lines) == count($mapped_from_lines));
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L261

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:261
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($ypos != $this->seq[$end]);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L345

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:345
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert(count($lines) == count($changed));
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L398

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:398
Security Score:
98 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($j > 0);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L144

Dynamic Code Execution in IPv6.php

CWE-94
File Location: wp-includes/SimplePie/src/Net/IPv6.php:144
Security Score:
97 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($pos !== false, 'For PHPStan: IPv6 address must contain colon, since split_v6_v4 is only ever called after uncompress.');
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L252

Dynamic Code Execution in Registry.php

CWE-94
File Location: wp-includes/SimplePie/src/Registry.php:252
Security Score:
97 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert(is_callable($callable), 'For PHPstan');
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L106

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:106
Security Score:
97 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($yi < $n_to || $this->xchanged[$xi]);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L121

Dynamic Code Execution in Locator.php

CWE-94
File Location: wp-includes/SimplePie/src/Locator.php:121
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($this->registry !== null);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L117

Dynamic Code Execution in IPv6.php

CWE-94
File Location: wp-includes/SimplePie/src/Net/IPv6.php:117
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($pos !== null, 'For PHPStan: Since the regex matched, there is at least one match. And because the pattern is non-empty, the loop will always end with $pos ≥ 1.');
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L1680

Dynamic Code Execution in SimplePie.php

CWE-94
File Location: wp-includes/SimplePie/src/SimplePie.php:1680
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- \assert($cache !== null, 'Cache must be defined');
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L293

Dynamic Code Execution in Diff.php

CWE-94
File Location: wp-includes/Text/Diff.php:293
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert(count($to_lines) == count($mapped_to_lines));
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L107

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:107
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($xi < $n_from || $this->ychanged[$yi]);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L206

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:206
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($k > 0);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L214

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:214
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($y <= $this->seq[$k]);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L222

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:222
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($k > 0);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L402

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:402
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($j >= 0 && !$other_changed[$j]);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L439

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:439
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($j > 0);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L443

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:443
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($j >= 0 && !$other_changed[$j]);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L68

Dynamic Code Execution in autoload.php

CWE-94
File Location: wp-includes/sodium_compat/autoload.php:68
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert(class_exists('ParagonIE_Sodium_Compat'), 'Possible filesystem/autoloader bug?');
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L70

Dynamic Code Execution in autoload.php

CWE-94
File Location: wp-includes/sodium_compat/autoload.php:70
Security Score:
96 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert(class_exists('ParagonIE_Sodium_Compat'));
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L155

Dynamic Code Execution in File.php

CWE-94
File Location: wp-includes/SimplePie/src/File.php:155
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert(is_array($info) && $info['redirect_count'] >= 0);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L302

Dynamic Code Execution in File.php

CWE-94
File Location: wp-includes/SimplePie/src/File.php:302
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($this->body !== null); // For PHPStan
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L167

Dynamic Code Execution in Locator.php

CWE-94
File Location: wp-includes/SimplePie/src/Locator.php:167
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($this->registry !== null);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L290

Dynamic Code Execution in Locator.php

CWE-94
File Location: wp-includes/SimplePie/src/Locator.php:290
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($this->registry !== null);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L454

Dynamic Code Execution in Locator.php

CWE-94
File Location: wp-includes/SimplePie/src/Locator.php:454
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($this->registry !== null);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L190

Dynamic Code Execution in IPv6.php

CWE-94
File Location: wp-includes/SimplePie/src/Net/IPv6.php:190
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert(is_int($value), 'For PHPStan: $value is only float when $ipv6_part > PHP_INT_MAX');
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L437

Dynamic Code Execution in Parser.php

CWE-94
File Location: wp-includes/SimplePie/src/Parser.php:437
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- \assert(function_exists('Mf2\fetch'));
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L366

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:366
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($j < $other_len && ! $other_changed[$j]);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L423

Dynamic Code Execution in native.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/native.php:423
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($j < $other_len && ! $other_changed[$j]);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L86

Dynamic Code Execution in shell.php

CWE-94
File Location: wp-includes/Text/Diff/Engine/shell.php:86
Security Score:
95 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- assert($match[1] - $from_line_no == $match[4] - $to_line_no);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L616

Potential SQL Injection in schema.php

CWE-89
File Location: wp-admin/includes/schema.php:616
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "INSERT INTO $wpdb->options (option_name, option_value, autoload) VALUES " . $insert ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1040

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:1040
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "UPDATE $wpdb->comments SET comment_date_gmt = DATE_ADD(comment_date, INTERVAL '$add_hours:$add_minutes' HOUR_MINUTE)" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1293

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:1293
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "UPDATE $wpdb->posts SET post_status = 'future' WHERE post_status = 'publish' AND post_date_gmt > '$now'" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2134

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2134
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "DELETE FROM $wpdb->options WHERE option_name REGEXP '^[0-9]+_new_email$'" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2618

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2618
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- if ( ! $wpdb->get_var( "SHOW TABLES LIKE '{$tables['sitecategories']}'" ) ) {
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2694

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2694
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( $create_ddl );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2697

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2697
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- if ( $wpdb->get_var( $query ) === $table_name ) {
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2777

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2777
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- foreach ( $wpdb->get_col( "DESC $table_name", 0 ) as $column ) {
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2799

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2799
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $results = $wpdb->get_results( "SHOW FULL COLUMNS FROM `$table`" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2815

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2815
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $table_details = $wpdb->get_row( "SHOW TABLE STATUS LIKE '$table'" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L65

Potential SQL Injection in install-helper.php

CWE-89
File Location: wp-admin/install-helper.php:65
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( $create_ddl );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L68

Potential SQL Injection in install-helper.php

CWE-89
File Location: wp-admin/install-helper.php:68
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- foreach ( $wpdb->get_col( 'SHOW TABLES', 0 ) as $table ) {
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1010

Potential SQL Injection in canonical.php

CWE-89
File Location: wp-includes/canonical.php:1010
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $post_id = $wpdb->get_var( "SELECT ID FROM $wpdb->posts WHERE $where AND post_status IN ('" . implode( "', '", esc_sql( $publicly_viewable_statuses ) ) . "')" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L3497

Potential SQL Injection in class-wp-query.php

CWE-89
File Location: wp-includes/class-wp-query.php:3497
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $comment_ids = $wpdb->get_col( $comments_request );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L720

Potential SQL Injection in class-wp-site-query.php

CWE-89
File Location: wp-includes/class-wp-site-query.php:720
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $site_ids = $wpdb->get_col( $this->request );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L4598

Potential SQL Injection in deprecated.php

CWE-89
File Location: wp-includes/deprecated.php:4598
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $page = $wpdb->get_var( $sql );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L466

Potential SQL Injection in meta.php

CWE-89
File Location: wp-includes/meta.php:466
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $meta_ids = $wpdb->get_col( $query );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L629

Potential SQL Injection in user.php

CWE-89
File Location: wp-includes/user.php:629
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $count = $wpdb->get_var( $query );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L577

Potential SQL Injection in deprecated.php

CWE-89
File Location: wp-admin/includes/deprecated.php:577
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $this->total_users_for_query = $wpdb->get_var("SELECT COUNT(DISTINCT($wpdb->users.ID))" . $this->query_from . $this->query_where); // No limit.
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1371

Potential SQL Injection in schema.php

CWE-89
File Location: wp-admin/includes/schema.php:1371
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "INSERT INTO $wpdb->sitemeta ( site_id, meta_key, meta_value ) VALUES " . $insert ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2647

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2647
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- if ( ! $wpdb->get_var( "SHOW TABLES LIKE '{$tables['sitecategories']}'" ) ) {
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L3270

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:3270
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $tableindices = $wpdb->get_results( "SHOW INDEX FROM {$table};" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L3353

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:3353
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( $query );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L323

Potential SQL Injection in user.php

CWE-89
File Location: wp-admin/includes/user.php:323
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- return $wpdb->get_results( $query );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L142

Potential SQL Injection in install-helper.php

CWE-89
File Location: wp-admin/install-helper.php:142
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- foreach ( $wpdb->get_col( "DESC $table_name", 0 ) as $column ) {
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L189

Potential SQL Injection in install-helper.php

CWE-89
File Location: wp-admin/install-helper.php:189
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $results = $wpdb->get_results( "DESC $table_name" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1829

Potential SQL Injection in functions.php

CWE-89
File Location: wp-includes/functions.php:1829
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $described_table = $wpdb->get_results( "DESCRIBE $table;" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2141

Potential SQL Injection in general-template.php

CWE-89
File Location: wp-includes/general-template.php:2141
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $results = $wpdb->get_results( $query );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2167

Potential SQL Injection in general-template.php

CWE-89
File Location: wp-includes/general-template.php:2167
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $results = $wpdb->get_results( $query );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2206

Potential SQL Injection in general-template.php

CWE-89
File Location: wp-includes/general-template.php:2206
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $results = $wpdb->get_results( $query );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L197

Potential SQL Injection in ms-deprecated.php

CWE-89
File Location: wp-includes/ms-deprecated.php:197
Security Score:
93 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $blog_list[ $details['blog_id'] ]['postcount'] = $wpdb->get_var( "SELECT COUNT(ID) FROM " . $wpdb->get_blog_prefix( $details['blog_id'] ). "posts WHERE post_status='publish' AND post_type='post'" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L267

Potential SQL Injection in deprecated.php

CWE-89
File Location: wp-admin/includes/deprecated.php:267
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $authors = $wpdb->get_results( "SELECT * FROM $wpdb->users WHERE ID IN ($editable) ORDER BY display_name" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L574

Potential SQL Injection in deprecated.php

CWE-89
File Location: wp-admin/includes/deprecated.php:574
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $this->results = $wpdb->get_col("SELECT DISTINCT($wpdb->users.ID)" . $this->query_from . $this->query_where . $this->query_orderby . $this->query_limit);
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1418

Potential SQL Injection in schema.php

CWE-89
File Location: wp-admin/includes/schema.php:1418
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "INSERT INTO $wpdb->blogmeta ( blog_id, meta_key, meta_value ) VALUES " . $insert ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1663

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:1663
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- while ( $rows = $wpdb->get_results( "SELECT option_name, option_value FROM $wpdb->options ORDER BY option_id LIMIT $start, 20" ) ) {
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2724

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2724
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "ALTER TABLE `$table` DROP INDEX `{$index}_$i`" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L133

Potential SQL Injection in install-helper.php

CWE-89
File Location: wp-admin/install-helper.php:133
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- foreach ( $wpdb->get_col( "DESC $table_name", 0 ) as $column ) {
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L844

Potential SQL Injection in class-wp-user-query.php

CWE-89
File Location: wp-includes/class-wp-user-query.php:844
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $this->results = $wpdb->get_results( $this->request );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L846

Potential SQL Injection in class-wp-user-query.php

CWE-89
File Location: wp-includes/class-wp-user-query.php:846
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $this->results = $wpdb->get_col( $this->request );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L5549

Potential SQL Injection in media.php

CWE-89
File Location: wp-includes/media.php:5549
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $results = $wpdb->get_results( $sql );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L835

Potential SQL Injection in ms-site.php

CWE-89
File Location: wp-includes/ms-site.php:835
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "DROP TABLE IF EXISTS `$table`" ); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L8276

Potential SQL Injection in post.php

CWE-89
File Location: wp-includes/post.php:8276
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $fresh_posts = $wpdb->get_results( sprintf( "SELECT $wpdb->posts.* FROM $wpdb->posts WHERE ID IN (%s)", implode( ',', $non_cached_ids ) ) );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L4455

Potential SQL Injection in taxonomy.php

CWE-89
File Location: wp-includes/taxonomy.php:4455
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $shared_tts = $wpdb->get_results( "SELECT * FROM {$wpdb->term_taxonomy} WHERE `term_id` IN ({$shared_term_ids})" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L702

Potential SQL Injection in user.php

CWE-89
File Location: wp-includes/user.php:702
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $result = $wpdb->get_results( $query, ARRAY_N );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L161

Potential SQL Injection in comment.php

CWE-89
File Location: wp-admin/includes/comment.php:161
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $pending = $wpdb->get_results( "SELECT comment_post_ID, COUNT(comment_ID) as num_comments FROM $wpdb->comments WHERE comment_post_ID IN ( $post_id_in ) AND comment_approved = '0' AND comment_type != 'note' GROUP BY comment_post_ID", ARRAY_A );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L3868

Potential SQL Injection in media.php

CWE-89
File Location: wp-admin/includes/media.php:3868
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $result = $wpdb->query( "UPDATE $wpdb->posts SET post_parent = 0 WHERE post_type = 'attachment' AND ID IN ( $ids_string )" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1898

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:1898
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "DELETE FROM $wpdb->usermeta WHERE meta_key IN ('$meta_keys')" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2720

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2720
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "ALTER TABLE `$table` DROP INDEX `$index`" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L103

Potential SQL Injection in install-helper.php

CWE-89
File Location: wp-admin/install-helper.php:103
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( $create_ddl );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L996

Potential SQL Injection in class-wp-comment-query.php

CWE-89
File Location: wp-includes/class-wp-comment-query.php:996
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $comment_ids = $wpdb->get_col( $this->request );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L805

Potential SQL Injection in class-wp-term-query.php

CWE-89
File Location: wp-includes/class-wp-term-query.php:805
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $count = $wpdb->get_var( $this->request ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L881

Potential SQL Injection in comment.php

CWE-89
File Location: wp-includes/comment.php:881
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $lasttime = $wpdb->get_var( $sql );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L7661

Potential SQL Injection in post.php

CWE-89
File Location: wp-includes/post.php:7661
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $date = $wpdb->get_var( "SELECT post_{$field}_gmt FROM $wpdb->posts WHERE post_status = 'publish' AND post_type IN ({$post_types}) ORDER BY post_{$field}_gmt DESC LIMIT 1" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L7664

Potential SQL Injection in post.php

CWE-89
File Location: wp-includes/post.php:7664
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $date = $wpdb->get_var( "SELECT post_{$field} FROM $wpdb->posts WHERE post_status = 'publish' AND post_type IN ({$post_types}) ORDER BY post_{$field}_gmt DESC LIMIT 1" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L8329

Potential SQL Injection in post.php

CWE-89
File Location: wp-includes/post.php:8329
Security Score:
91 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $fresh_posts = $wpdb->get_results( sprintf( "SELECT $wpdb->posts.ID, $wpdb->posts.post_parent FROM $wpdb->posts WHERE ID IN (%s)", implode( ',', $non_cached_ids ) ) );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L948

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:948
Security Score:
90 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $allposts = $wpdb->get_results( "SELECT ID, post_category FROM $wpdb->posts WHERE post_category != '0' $catwhere" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1041

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:1041
Security Score:
90 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "UPDATE $wpdb->users SET user_registered = DATE_ADD(user_registered, INTERVAL '$add_hours:$add_minutes' HOUR_MINUTE)" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1125

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:1125
Security Score:
90 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "DELETE FROM $wpdb->options WHERE option_id IN ($dupe_ids)" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L1399

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:1399
Security Score:
90 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $posts = $wpdb->get_results( "SELECT $select FROM $wpdb->post2cat GROUP BY post_id, category_id" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2747

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2747
Security Score:
90 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( "ALTER TABLE `$table` ADD INDEX ( `$index` )" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2767

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2767
Security Score:
90 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- foreach ( $wpdb->get_col( "DESC $table_name", 0 ) as $column ) {
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L2774

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:2774
Security Score:
90 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $wpdb->query( $create_ddl );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L3027

Potential SQL Injection in upgrade.php

CWE-89
File Location: wp-admin/includes/upgrade.php:3027
Security Score:
90 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $tablefields = $wpdb->get_results( "DESCRIBE {$table};" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));