Stackoverflow type of badge plugin giving warnings in WordPress 3.5

Lead developer Nacin answers this one:

Hello plugin or theme author! You possibly found this post after
searching the Internet for the error above: “PHP Warning: Missing
argument 2 for wpdb::prepare().”

So, this is a new warning in 3.5. No sites are broken, everything is
fine as before. But, this is indeed something you need to look at,
because you may be exposing your users to a possible SQL injection
vulnerability. Now that’s no fun!

Have a read of the rest, for further explanation.

As for rehabilitating your existing code:

$wpdb->prepare( 
    "
    SELECT COUNT(*)
    FROM " . $wpdb->prefix . "comments
    WHERE user_id = " . $args['user_ID'] . "
    AND comment_approved = '1'
    " 
)

First, clean it up by getting rid of the unnecessary string concatenation, and calling $wpdb->comments for the comments table:

$wpdb->prepare( 
    "
    SELECT  COUNT(*)
    FROM    $wpdb->comments
    WHERE   user_id = $args['user_ID']
    AND     comment_approved = '1'
    " 
)

Now, the warning has to do with this part of the query:

WHERE   user_id = $args['user_ID']

You need to replace $args['user_ID'] with $d, and then use $args['user_ID'] as the missing, second parameter:

$wpdb->prepare( 
    "
    SELECT  COUNT(*)
    FROM    $wpdb->comments
    WHERE   user_id = %d
    AND     comment_approved = '1'
    ",
    $args['user_ID'] // %d
)

The second one should be similar:

$wpdb->prepare( 
    "
    SELECT    COUNT(*)
    FROM      $wpdb->posts
    WHERE     post_author = %d
    AND       post_status="publish"
    AND       post_type="post"
    ",
    $args['user_ID'] // %d
)

Related Posts:

  1. Issue running db create table query from static method
  2. Wp Debug Enabled True Notices and Warning
  3. How to fix these PHP Warnings with the “Feed JSON” plug-in?
  4. Using id to show item
  5. No result after wpdb->insert
  6. My wordpress site wont load, it gives header error warnings
  7. How can I use WordPress functions in my stylesheet?
  8. Is their any way to Extend WPDB class and Overwrite the Default Query Function
  9. Cropping, Re-sizing and Saving images from one folder to another folder in wordpress
  10. WordPress widget / plugin….fields not appearing in my widget
  11. Multi step form, custom plugin
  12. ob_end_flush error when using wpdb in plugin
  13. How to send “Location” header on plugin form submit event?
  14. Add jQuery to WordPress page
  15. From where come that JS files in ?
  16. Improving a Stackoverflow “inspired” badge system to display badges in author page
  17. Missing argument 3 for wp_register_sidebar_widget()
  18. How to Include a Loop Template File in a Plugin
  19. WordPress Plugin Page is Loading in Admin Content Container Instead of Separate Page
  20. Shortcode button dosent work for all posts. Work for first post only
  21. Is Wrapping intval() Around esc_attr() Redundant for Escaping Input?
  22. Display data on Word Press site posts and pages from mysql table
  23. How make a php script run only with wp-cron
  24. Redirection of users away from wp-admin (but not administrators)
  25. Most efficient way to use classes to create admin pages using Settings API
  26. CMB2 toolkit: Compare 2 Dates and validate the Time
  27. Change commission_status paid when withdraw_status vendor is completed
  28. PHP Warning: call_user_func_array() expects parameter 1 to be a valid callback Error without any function name
  29. Custom WPBakery elements not displaying in WP admin
  30. Adapt PHP form action for WordPress?
  31. All sites themes functions.php have been changed
  32. Individual testimonial taxonomy not displaying (white screen)
  33. Using TinyMCE in plugin?
  34. Media Upload Tab reload and change $_GET
  35. How to define constant before plugin [duplicate]
  36. Use wordpress plugin in codeigniter
  37. How to Loop Through all Posts and Count Attachments using Get Media Attachments
  38. Only allowing some emails to create an account [closed]
  39. Basic function call on init failing
  40. Get ‘Headers already sent’ error for the plugin I am creating when I try to login
  41. Return multiple values ​in a shortcode attribute
  42. get specific value of a array | PHP
  43. Creating a functionality plugin to edit seriously simple podcasting
  44. Programatically upload a file to be stored inside blob field in database, NOT on filesystem
  45. Make plugin php file called directly aware of WordPress?
  46. dynamically create callback functions inside a for loop
  47. Using $wpdb in a plugin, what sort of data does it return?
  48. Next Previous Post in wordpress with previous / next link with title?
  49. WordPress truncate posts question (plugin related)
  50. Different registration form for different roles
  51. WordPress Post HTML after Posting
  52. Settings options not showing up on Sub Menu page in WordPress plugin
  53. Cannot Access Console
  54. Plugin error after installation
  55. woocommerce remove coupon link does not work
  56. Use a hook or filter, or overwrite this Gamipress function?
  57. Plugin or ways to limit number of users logging in the website,
  58. Replace old theme that understand old css (vcex_icon_box css_animation)
  59. How to insert datas in the table on wordpress?
  60. WP Ajax DB issues
  61. ACF checkbox return format based on page
  62. How to get database connection details without longing to cpanel in WordPress?
  63. The Build menu theme is frozen with the wordpress theme
  64. Does anyone know why my SEO and title become one?
  65. How to translate wordpress blog to other languages?
  66. How to translate to spanish wordpress hardcoded content/files?
  67. How to get a post views count using ‘WordPress popular posts’ plugin
  68. Get Shortcode output to database for static post_content
  69. strtotime not working
  70. Prefix WordPress Taxonomy Tags With Hashtag Symbol Like Twitter
  71. How To Toggle User_Meta in frontend in a form using PHP
  72. Change Woo Custom Endpoint Titles from a Plugin
  73. Change custom rewrite rule when permalink is updated/changed
  74. Optimized PHP & WordPress settings for speed/performance?
  75. Speeding up WordPress on a Local Network
  76. How can I store user preferences in WordPress and retreive them later?
  77. Any method to make specific widget for every post and page?
  78. How to add php plugin code in theme
  79. how change my menu on submenu
  80. Plugin debugging with errors in activation routine
  81. Number format in thousands on highcharts in wpdatatable plugin
  82. Embed Javascript code to registered users only
  83. Find all strings between an enclosing shortcode
  84. How to set up php,javascript and css to allow for our finished product to be displayed within a page?
  85. W3 Total Cache Can’t Really Detect Things
  86. How do I add php to all links automatically?
  87. Vote It Up Plugin – Add ascending numbers to MostVotedAllTime Chart Function
  88. How to fix vanilla comments extra iframe space
  89. Making plugin to use different table prefix cause permission problem
  90. Meta Box plugin image_advanced not showing up on frontend
  91. Creating Features List in WordPress Post
  92. PHP Creating a formula from mysql db values and db stored math operator
  93. cURL External API request displays content above other content on page
  94. How can I save the selected page in the dropdown after anyone clicks on Save Changes?
  95. Posts in Admin only display 1 Post instead of all Post in admin area
  96. How can I save the selected page in the dropdown after anyone clicks on Save Changes?
  97. Creating a Table Row by Row
  98. Getting 504 Gateway Timeout Error on AWS Server! [closed]
  99. WordPress issue – data is not showing in wp-admin, but when searching through database, all the data is there
  100. WordPress Throwing Deprecated Errors on its own Files

Leave a Comment