Getting warning of Missing argument 2 for wpdb::prepare()

Your prepare() statement is completely wrong. prepare() statements should be written in the style of sprintf(). You have to pass two arguments (for prepare() it became compulsary as of version 3.5), if you pass only one, you get the missing arguments warning that you currently get. It will be beneficial if you look at how sprintf() works as this will help you alot here.

The purpose of WPDB::prepare() is to sanitize variable values passed to your statement in order to prevent SQL injection. This is extremely important. Hackers love to inject malicious code into form fields and URL’s in order to try to get access to your site, and if you use unsanitized values from $_POST and $_GET and save that to db, you save that malicious code with your values in db, and boom, your site is open to the hacker.

A rule of thumb, if any data is coming from outside, ie any user submitted data (and that includes you aswell), never ever trust it. Always treat such data as infected and malicious. Never ever even trust yourself as well. SANITIZE, VALIDATE AND ESCAPE all data accordingly.

In your prepare statement, you should remove all your variables, and replace them with the corresponding placeholder. Again, please read and understand the sprintf() function page. You cannot mix placeholders, the placeholder passed will determine the sanitation which will be used on the value of the variable. If your variable is suppose to be string, use %s as placeholder, if the value is an integer, use %d. I’m not going to go into this, as it is pure PHP, so be sure to go and read up on using placeholders and sprintf().

Just as an example, you can rewrite your statement as follow: (UNTESTED)

$wpdb->prepare(
    "
        UPDATE %s 
        SET sftemplate_name = %s, sftemplate_type = %s, sftemplate_status = %s 
        WHERE sfID = %d
    ",
    $table_name_sms,
    $message,
    $sfact_order_action,
    $someSwitchOption001,
    $_REQUEST['setid']
)

A FEW NOTES

  • I think that using a variable to hold the table name is unnecessary, hardcode that.

  • I accepted that all vlaues, except the last should be a string, the last value is an integer

  • The above is just an example and is by no means a working example. You should first make sure that you understand how everything works before trying something on a live site

EDIT

If you do not fully understand prepare statements, why not just use WPDB::update() It is much easier, faster from initial testing, and it automatically takes care of sanitation and validation as it uses prepare() before updating the db

Related Posts:

  1. Get plugin directory from a theme
  2. WordPress Plugin Development In MVC Architecture, How?
  3. Rewriting every url
  4. category_name not working (not showing up in sql query debug)
  5. How can I make my custom shortcode work in a Custom HTML Widget?
  6. What happens when two plugins have the same 3rd party class included into them?
  7. add_rewrite_rule, plugin activation and plugin deactivation
  8. Custom admin column disappearing when using Quick Edit [duplicate]
  9. Create page when plugin is activated
  10. Update Multiple Post Meta for the Same Post In One call?
  11. Allowing Custom Capability to Manage Plugin Options
  12. wp_insert_user – how to send verification email before logging in
  13. Custom plugin settings: clicking “save changes” does not display success message
  14. How to un-attach rich text editor from named textarea elements
  15. How can I translate the name of my Plugin for other languages?
  16. how to not show plugin in admin area
  17. Memory Leak in plugin action
  18. Getting User email on logout. wp_logout
  19. Ajax call doesn’t work in frontend but it’s working in backend (when I’m logged in)
  20. How can I filter blog name?
  21. Logs to check when the plugin was first installed for the first time
  22. Can a plugin add to header/footer/body content?
  23. Detect if a plugin was included in a certain page
  24. Override the core function locate_template
  25. How Can A Plugin Hook Itself To the End of Every Excerpt?
  26. Allow Facebook to preview posts before published
  27. Admin page: form with enctype=”multipart/form-data” does not transfer its data
  28. Set user ID at time of wp_create_user
  29. add action for displaying posts using a shortcode
  30. Best way to hook a custom url?
  31. How do I add a custom sub menu menu under Woo-commerce marketing?
  32. How to load plugin after page is loaded – pagespeed issues
  33. How to create custom tables in WordPress using my own plugin?
  34. How to modify WCMP Rest API response?
  35. Making a Template for a CPT created by a plugin
  36. Woocommerce dependent plugin
  37. External CSS in WordPress Plugin [closed]
  38. User Session and Stored Cookies not get removed
  39. Create a navbar filter that filters by a custom field
  40. get 404 when accessing wp-admin/plugin-install.php
  41. Woocommerce Minimum Price for a Composite Product to add in cart
  42. add tabs in rdp-plugin/includes/settings.php and get settings saved
  43. Customised plugin failed to install and activate
  44. Plugin Development Form Self Submission
  45. Why is one phpunit test throwing an error on one class when all other classes are similar without error?
  46. How To Extend A WordPress Plugin Without Losing Your Changes [duplicate]
  47. Does a blank plugin come with any overhead?
  48. Admin AJAX doesn’t work in plugin admin page – Even though code is copied verbatim from WordPress Codex
  49. WPDB: Update table
  50. Why is my custom post type not being activated on plug-in activation?
  51. How to get all posts belongs to a user between a certain date
  52. Check filter defined or not?
  53. How to generate an all in one WordPress New content, plugin and theme update report on a website? [closed]
  54. Why WP_Screeen doesn’t show all options with admin_body_class
  55. License validate function
  56. wp_enqueue_style on template_redirect level?
  57. Built a second plugin but it overwrote the first one
  58. Symlink a plugin in local development, works but got Debug error message – Windows 10
  59. Calling a class method instantiated by ajax call in wordpress [closed]
  60. Display my plugins content based on a pages post_id
  61. Custom Post Type template for homepage
  62. Pluging with content for a specific page or post
  63. How can i export and import my plugin option WordPress
  64. Remove all messages, when untrash a post
  65. Upload Image with a file URL and show dynamically on Frontend
  66. Why won’t wp_enqueue_script work within any plugin file?
  67. Help to Create a Simple Plugin to make a post
  68. Error using wordpress functions inside a plugin class
  69. How to resolve warning for `unstableOnSplit` prop on a DOM element in block editor
  70. Rename a folder via HTML POST request
  71. Cron task gets removed from the schedule
  72. how override a define
  73. WordPress plugin blog creation
  74. Preserving existing functionality converting HTML to WordPress
  75. add tags to wordpress post using REST API
  76. path of wp-content directory when we are on some plugin
  77. “Enable Media Replace” plugin does not update serialized object in WPMeta
  78. how to do Thematic like this website using wordpress?
  79. Add Custom Field to Post Pages via Plugin
  80. Timing issue with is_amp_endpoint()
  81. Is it possible to change plugin’s Admin Panel Url?
  82. Can I add content before post content without using the_content filter
  83. Why is the WordPress update_option not working in this code?
  84. what is the best way to create a premium plugin while also protecting your code
  85. hide load more button if there are no posts left to display
  86. My plugin can’t see my files
  87. Add predefined values to custom post plugin
  88. Use functionality in third-party plugin in my own plugin
  89. Input gets deleted/overwritten after changing to different Admin Menu
  90. Force Network Activated Plugin to Run After Site Level Plugins
  91. I want to add facility to add country, State, City in my custom plugin
  92. How to set the default options on an existing plugin in a WP MU new user install
  93. Plugin Breaking WordPress Login
  94. Cannot Search | Featured | Popular | Newest | Favorites in wordpress working
  95. WP-Snap too slow (caused by WP_Query?)
  96. WordPress Meta Query: Relation is not working correctly
  97. Checking url from plugin [duplicate]
  98. WP Elementor Pro causing crtical failure on website
  99. Function not being called on form submit, only blank admin-post.php page
  100. How to give specific class name to category in wordpress with code snippets