Plugin inspection:

The Events Calendar PRO

No issues found

Last revised:

Confidence: Medium
This plugin has been given a short, targeted code review.

We didn't find anything worrying in this plugin. It's probably safe. Read more about this recommendation.

Warnings

This recommendation applies to version 3.4 of this plugin, but the most recent version is 3.7. These findings may no longer be correct.

View the recommendation for version 3.7 of this plugin instead

Findings

  • Puts variables into SQL without escaping (vendor/advanced-post-manager/lib/tribe-meta-box.php line 388)
  • No other issues found

Failure criteria

  • Execution of unprepared SQL statements

Read more about our failure criteria.