diff --git a/.github/workflows/phpcs_on_pull_request.yml b/.github/workflows/phpcs_on_pull_request.yml
new file mode 100644
index 000000000..1cc01b2a0
--- /dev/null
+++ b/.github/workflows/phpcs_on_pull_request.yml
@@ -0,0 +1,18 @@
+on: pull_request
+name: Inspections
+jobs:
+  runPHPCSInspection:
+    name: Run PHPCS inspection
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v2
+      with:
+        ref: ${{ github.event.pull_request.head.sha }}
+    - name: Run PHPCS inspection
+      uses: rtCamp/action-phpcs-code-review@master
+      env:
+        SKIP_FOLDERS: "tests,.github,lib,node_modules,vendor"
+        GH_BOT_TOKEN: ${{ secrets.RTBOT_TOKEN }}
+        PHPCS_SNIFFS_EXCLUDE: "WordPress.Files.FileName"
+      with:
+        args: WordPress,WordPress-Core,WordPress-Docs
\ No newline at end of file
diff --git a/Gruntfile.js b/Gruntfile.js
index 418ba7ce9..1ed487ea6 100644
--- a/Gruntfile.js
+++ b/Gruntfile.js
@@ -72,6 +72,26 @@ module.exports = function (grunt) {
                 files: {
                     'app/assets/js/godam-ajax-refresh.min.js': ['app/assets/js/godam-ajax-refresh.js']
                 }
+            },
+            rtmedia_admin: {
+                files: {
+                    'app/assets/admin/js/rtmedia-admin.min.js': ['app/assets/admin/js/rtmedia-admin.js']
+                }
+            },
+            importer: {
+                files: {
+                    'app/assets/admin/js/importer.min.js': ['app/assets/admin/js/importer.js']
+                }
+            },
+            wp67_media_element: {
+                files: {
+                    'app/assets/js/wp67-mediaelement-init.min.js': ['app/assets/js/wp67-mediaelement-init.js']
+                }
+            },
+            migration: {
+                files: {
+                    'app/assets/admin/js/migration.min.js': ['app/assets/admin/js/migration.js']
+                }
             }
         }
     });
diff --git a/README.md b/README.md
index c609d50f1..51ae3c669 100644
--- a/README.md
+++ b/README.md
@@ -11,7 +11,7 @@ Add albums, photo, audio/video upload, privacy, sharing, front-end uploads & mor
 ![BrowserStack Status](https://www.browserstack.com/automate/badge.svg?badge_key=MU1JamdmRnppK0hhQy9QMU8wdDJ2MUEyb1ZuS0ljVFQvSHZ6anFvNzUxTT0tLXhUNnliTnZGcE5CcW93N0I1eXdnM3c9PQ==--8c124e667dd0c317618efde1bed2b260000916b6)
 
 
-* **Contributors:** [rtcamp](http://profiles.wordpress.org/rtcamp), [mangeshp](http://profiles.wordpress.org/mangeshp), [sanket.parmar](http://profiles.wordpress.org/sanket.parmar), [pranalipatel](http://profiles.wordpress.org/pranalipatel), [jignesh.nakrani](http://profiles.wordpress.org/jignesh.nakrani), [manishsongirkar36](http://profiles.wordpress.org/manishsongirkar36), [kiranpotphode](http://profiles.wordpress.org/kiranpotphode), [yahil](http://profiles.wordpress.org/yahil), [1naveengiri](http://profiles.wordpress.org/1naveengiri), [bhargavbhandari90](http://profiles.wordpress.org/bhargavbhandari90), [deepak1191](http://profiles.wordpress.org/deepak1191), [rittesh.patel](http://profiles.wordpress.org/rittesh.patel), [sagarjadhav](http://profiles.wordpress.org/sagarjadhav), [pushpak.pop](http://profiles.wordpress.org/pushpak.pop), [faishal](http://profiles.wordpress.org/faishal), [desaiuditd](http://profiles.wordpress.org/desaiuditd), [rahul286](http://profiles.wordpress.org/rahul286), [JoshuaAbenazer](http://profiles.wordpress.org/JoshuaAbenazer), [gagan0123](http://profiles.wordpress.org/gagan0123), [saurabhshukla](http://profiles.wordpress.org/saurabhshukla), [nitun.lanjewar](http://profiles.wordpress.org/nitun.lanjewar), [umesh.nevase](http://profiles.wordpress.org/umesh.nevase), [suhasgirgaonkar](http://profiles.wordpress.org/suhasgirgaonkar), [neerukoul](http://profiles.wordpress.org/neerukoul), [hrishiv90](http://profiles.wordpress.org/hrishiv90), [kanakiyajay](http://profiles.wordpress.org/kanakiyajay), [jarretc](http://profiles.wordpress.org/jarretc), [tobiaskluge](http://profiles.wordpress.org/tobiaskluge), [rafaelfunchal](http://profiles.wordpress.org/rafaelfunchal), [UmeshSingla](http://profiles.wordpress.org/UmeshSingla), [mehulkaklotar](http://profiles.wordpress.org/mehulkaklotar), [tannermirabel](http://profiles.wordpress.org/tannermirabel), [kishores](http://profiles.wordpress.org/kishores), [chandrapatel](http://profiles.wordpress.org/chandrapatel), [rahul3883](http://profiles.wordpress.org/rahul3883/), [nomnom99](http://profiles.wordpress.org/nomnom99), [sayanchakraborty](https://profiles.wordpress.org/sayanchakraborty), [milindmore22](https://profiles.wordpress.org/milindmore22), [thrijith](https://profiles.wordpress.org/thrijith), [abhijitrakas](https://profiles.wordpress.org/abhijitrakas), [sid177](https://profiles.wordpress.org/sid177), [montu3366](https://profiles.wordpress.org/montu3366), [jashwini](https://profiles.wordpress.org/jashwini), [juhise](https://profiles.wordpress.org/juhise), [ravatparmar](https://profiles.wordpress.org/ravatparmar), [dharmin16](https://profiles.wordpress.org/dharmin16), [malavvasita](https://profiles.wordpress.org/malavvasita), [pooja1210](https://profiles.wordpress.org/pooja1210), [krupajnanda](https://profiles.wordpress.org/krupajnanda), [kanumalivad](https://profiles.wordpress.org/kanumalivad), [surajkumarsingh](https://profiles.wordpress.org/surajkumarsingh), [dishitpala](https://profiles.wordpress.org/dishitpala), [shobhit2412](https://profiles.wordpress.org/shobhit2412/), [vkd007](https://profiles.wordpress.org/vkd007/), [vaishu.agola27](https://profiles.wordpress.org/vaishuagola27/), [kapilpaul](https://profiles.wordpress.org/kapilpaul/), [opurockey](https://profiles.wordpress.org/opurockey/), [pavanpatil1](https://profiles.wordpress.org/pavanpatil1/), [pradeep1308](https://profiles.wordpress.org/pradeep1308/), [shardul200](https://profiles.wordpress.org/shardul200/), [ibnulk](https://profiles.wordpress.org/ibnulk/), [sabbir1991](https://profiles.wordpress.org/sabbir1991/), [kamalahmed](https://profiles.wordpress.org/kamalahmed/), [harshbarach](https://profiles.wordpress.org/harshbarach/), [mukulsingh27](https://profiles.wordpress.org/mukulsingh27/), [vishalkakadiya](https://profiles.wordpress.org/vishalkakadiya/), [elifvish](https://profiles.wordpress.org/elifvish/), [krupajnanda](https://profiles.wordpress.org/krupajnanda/), [utsavladani](https://profiles.wordpress.org/utsavladani/),[krishana79](https://profiles.wordpress.org/krishana79/), [rohitmathur7](https://profiles.wordpress.org/rohitmathur7/)
+* **Contributors:** [rtcamp](http://profiles.wordpress.org/rtcamp), [mangeshp](http://profiles.wordpress.org/mangeshp), [sanket.parmar](http://profiles.wordpress.org/sanket.parmar), [pranalipatel](http://profiles.wordpress.org/pranalipatel), [jignesh.nakrani](http://profiles.wordpress.org/jignesh.nakrani), [manishsongirkar36](http://profiles.wordpress.org/manishsongirkar36), [kiranpotphode](http://profiles.wordpress.org/kiranpotphode), [yahil](http://profiles.wordpress.org/yahil), [1naveengiri](http://profiles.wordpress.org/1naveengiri), [bhargavbhandari90](http://profiles.wordpress.org/bhargavbhandari90), [deepak1191](http://profiles.wordpress.org/deepak1191), [rittesh.patel](http://profiles.wordpress.org/rittesh.patel), [sagarjadhav](http://profiles.wordpress.org/sagarjadhav), [pushpak.pop](http://profiles.wordpress.org/pushpak.pop), [faishal](http://profiles.wordpress.org/faishal), [desaiuditd](http://profiles.wordpress.org/desaiuditd), [rahul286](http://profiles.wordpress.org/rahul286), [JoshuaAbenazer](http://profiles.wordpress.org/JoshuaAbenazer), [gagan0123](http://profiles.wordpress.org/gagan0123), [saurabhshukla](http://profiles.wordpress.org/saurabhshukla), [nitun.lanjewar](http://profiles.wordpress.org/nitun.lanjewar), [umesh.nevase](http://profiles.wordpress.org/umesh.nevase), [suhasgirgaonkar](http://profiles.wordpress.org/suhasgirgaonkar), [neerukoul](http://profiles.wordpress.org/neerukoul), [hrishiv90](http://profiles.wordpress.org/hrishiv90), [kanakiyajay](http://profiles.wordpress.org/kanakiyajay), [jarretc](http://profiles.wordpress.org/jarretc), [tobiaskluge](http://profiles.wordpress.org/tobiaskluge), [rafaelfunchal](http://profiles.wordpress.org/rafaelfunchal), [UmeshSingla](http://profiles.wordpress.org/UmeshSingla), [mehulkaklotar](http://profiles.wordpress.org/mehulkaklotar), [tannermirabel](http://profiles.wordpress.org/tannermirabel), [kishores](http://profiles.wordpress.org/kishores), [chandrapatel](http://profiles.wordpress.org/chandrapatel), [rahul3883](http://profiles.wordpress.org/rahul3883/), [nomnom99](http://profiles.wordpress.org/nomnom99), [sayanchakraborty](https://profiles.wordpress.org/sayanchakraborty), [milindmore22](https://profiles.wordpress.org/milindmore22), [thrijith](https://profiles.wordpress.org/thrijith), [abhijitrakas](https://profiles.wordpress.org/abhijitrakas), [sid177](https://profiles.wordpress.org/sid177), [montu3366](https://profiles.wordpress.org/montu3366), [jashwini](https://profiles.wordpress.org/jashwini), [juhise](https://profiles.wordpress.org/juhise), [ravatparmar](https://profiles.wordpress.org/ravatparmar), [dharmin16](https://profiles.wordpress.org/dharmin16), [malavvasita](https://profiles.wordpress.org/malavvasita), [pooja1210](https://profiles.wordpress.org/pooja1210), [krupajnanda](https://profiles.wordpress.org/krupajnanda), [kanumalivad](https://profiles.wordpress.org/kanumalivad), [surajkumarsingh](https://profiles.wordpress.org/surajkumarsingh), [dishitpala](https://profiles.wordpress.org/dishitpala), [shobhit2412](https://profiles.wordpress.org/shobhit2412/), [vkd007](https://profiles.wordpress.org/vkd007/), [vaishu.agola27](https://profiles.wordpress.org/vaishuagola27/), [kapilpaul](https://profiles.wordpress.org/kapilpaul/), [opurockey](https://profiles.wordpress.org/opurockey/), [pavanpatil1](https://profiles.wordpress.org/pavanpatil1/), [pradeep1308](https://profiles.wordpress.org/pradeep1308/), [shardul200](https://profiles.wordpress.org/shardul200/), [ibnulk](https://profiles.wordpress.org/ibnulk/), [sabbir1991](https://profiles.wordpress.org/sabbir1991/), [kamalahmed](https://profiles.wordpress.org/kamalahmed/), [harshbarach](https://profiles.wordpress.org/harshbarach/), [mukulsingh27](https://profiles.wordpress.org/mukulsingh27/), [vishalkakadiya](https://profiles.wordpress.org/vishalkakadiya/), [elifvish](https://profiles.wordpress.org/elifvish/), [krupajnanda](https://profiles.wordpress.org/krupajnanda/), [utsavladani](https://profiles.wordpress.org/utsavladani/),[krishana79](https://profiles.wordpress.org/krishana79/), [rohitmathur7](https://profiles.wordpress.org/rohitmathur7/), [kuldipchaudhary](https://profiles.wordpress.org/kuldipchaudhary/), [mchirag2002](https://profiles.wordpress.org/mchirag2002/), [vedantgandhi28](https://profiles.wordpress.org/vedantgandhi28/)
 
 * **License:** [GPL v2 or later]( http://www.gnu.org/licenses/gpl-2.0.html)
 
@@ -138,7 +138,7 @@ https://www.youtube.com/watch?v=dJrykKQGDcs
 3.  Media Types Settings
 4.  Media Size Settings
 5.  Privacy Settings
-6.  Other Setiings
+6.  Other Settings
 7.  Export/Import Settings
 8.  Media View
 9.  Album View
@@ -151,6 +151,15 @@ https://www.youtube.com/watch?v=dJrykKQGDcs
 
 ## Changelog ##
 
+### 4.7.4
+* FIXED
+  * Apply security recommendations and fixes.
+  * Restrict the media upload by its types based on selected tab in rtMedia gallery.
+
+* ENHANCEMENT
+  * Enhances media upload support by adding a broader set of commonly used video and audio formats.
+  * Replace PHP file system functions with WordPress alternative filesystem function to enhance security.
+
 ### 4.7.3
 
 * FIXED
@@ -1984,7 +1993,7 @@ rtMedia includes [full translation support](https://rtmedia.io/docs/translations
 rtMedia uses the following projects/sources for some functionality
 
 * [MediaElement.js](http://mediaelementjs.com/) for html5 audio/video player
-* [Maginific Popup](http://dimsemenov.com/plugins/magnific-popup/) for responsive lightbox
+* [Magnific Popup](http://dimsemenov.com/plugins/magnific-popup/) for responsive lightbox
 * [getID3](http://getid3.sourceforge.net/) gets us some ID tags for the media
 * [Foundation](http://foundation.zurb.com/) for the media grid and layout
 * [Backbone.js](http://backbonejs.org/) for an MVC architecture for the frontend
diff --git a/app/admin/RTMediaAdmin.php b/app/admin/RTMediaAdmin.php
index 51aea3a04..a532b7206 100644
--- a/app/admin/RTMediaAdmin.php
+++ b/app/admin/RTMediaAdmin.php
@@ -48,12 +48,12 @@ class RTMediaAdmin {
 		 */
 		public $rtmedia_feed;
 
-		/*
+		/**
 		 * Static property to store the admin pages
 		 *
 		 * @var array
 		 */
-		public static $rtmedia_pages = [
+		public static $rtmedia_pages = array(
 			'rtmedia-settings',
 			'rtmedia-addons',
 			'rtmedia-pro-addons',
@@ -64,7 +64,7 @@ class RTMediaAdmin {
 			'rtmedia-attributes',
 			'rtmedia-moderate',
 			'rtmedia-blocked-users',
-		];
+		);
 
 		/**
 		 * Constructor - get the plugin hooked in and ready
@@ -131,11 +131,9 @@ public function __construct() {
 				if ( isset( $rtmedia_option['general_showAdminMenu'] ) && 1 === intval( $rtmedia_option['general_showAdminMenu'] ) ) {
 					add_action( 'admin_bar_menu', array( $this, 'admin_bar_menu' ), 100, 1 );
 				}
-			} else {
-				if ( is_array( $rtmedia->options ) ) {
-					if ( 1 === intval( $rtmedia->options['general_showAdminMenu'] ) ) {
-						add_action( 'admin_bar_menu', array( $this, 'admin_bar_menu' ), 100, 1 );
-					}
+			} elseif ( is_array( $rtmedia->options ) ) {
+				if ( 1 === intval( $rtmedia->options['general_showAdminMenu'] ) ) {
+					add_action( 'admin_bar_menu', array( $this, 'admin_bar_menu' ), 100, 1 );
 				}
 			}
 
@@ -245,6 +243,7 @@ public function rtm_admin_templates() {
 				 */
 				$display = apply_filters( 'rtmedia_disable_media_in_commented_media', false );
 				if ( $display ) {
+					// No a security issue, so keeping the style here.
 					?>
 					<style type="text/css">
 						.rtm-option-wrapper .form-table[data-depends="buddypress_enableOnComment"] {
@@ -761,6 +760,19 @@ public function ui( $hook ) {
 			$admin_pages = apply_filters( 'rtmedia_filter_admin_pages_array', $admin_pages );
 			$suffix      = ( function_exists( 'rtm_get_script_style_suffix' ) ) ? rtm_get_script_style_suffix() : '.min';
 
+			// Enqueue importer script only on importer pages.
+			if (
+				( false !== strpos( $hook, 'rtmedia-media-size-import' ) ) ||
+				( false !== strpos( $hook, 'rtmedia-activity-upgrade' ) )
+			) {
+				wp_enqueue_script( 'rtmedia-importer', RTMEDIA_URL . 'app/assets/admin/js/importer' . $suffix . '.js', array( 'jquery' ), RTMEDIA_VERSION, true );
+			}
+
+			// Enqueue migration JS on migration pages to avoid inline scripts.
+			if ( false !== strpos( $hook, 'rtmedia-migration' ) ) {
+				wp_enqueue_script( 'rtmedia-migration', RTMEDIA_URL . 'app/assets/admin/js/migration' . $suffix . '.js', array( 'jquery' ), RTMEDIA_VERSION, true );
+			}
+
 			if ( in_array( $hook, $admin_pages, true ) || strpos( $hook, 'rtmedia-migration' ) ) {
 
 				$admin_ajax = admin_url( 'admin-ajax.php' );
@@ -774,11 +786,25 @@ public function ui( $hook ) {
 					wp_enqueue_script( 'rtmedia-admin', RTMEDIA_URL . 'app/assets/admin/js/admin.min.js', array( 'backbone', 'wp-util' ), RTMEDIA_VERSION, true );
 				}
 
+				// Enqueue JS file for GoDAM notice show/hide.
+				wp_enqueue_script( 'rtmedia-rtmedia-admin', RTMEDIA_URL . 'app/assets/admin/js/rtmedia-admin.min.js', array( 'jquery' ), RTMEDIA_VERSION, true );
+				wp_localize_script(
+					'rtmedia-rtmedia-admin',
+					'rtmedia_rtmedia_admin',
+					array(
+						'ajax_url' => admin_url( 'admin-ajax.php' ),
+						'godam_banner_nonce'    => wp_create_nonce( 'install-godam-hide-notice' ),
+						'bp_is_active__activity' => ( class_exists( 'BuddyPress' ) && bp_is_active( 'activity' ) ),
+						'bp_is_active__groups'  => ( class_exists( 'BuddyPress' ) && bp_is_active( 'groups' ) ),
+					)
+				);
+
 				wp_localize_script(
 					'rtmedia-admin',
 					'RTMedia_Admin_Settings_JS',
 					array(
 						'rtmedia_default_sizes_error_message' => esc_html__( 'Invalid value for [default_size_property].', 'buddypress-media' ),
+						'rtmedia_buddypress_convert_nonce'    => wp_create_nonce( 'rtmedia_buddypress_convert_nonce' ),
 					)
 				);
 
@@ -934,7 +960,6 @@ public function menu() {
 					)
 				);
 			}
-
 		}
 
 		/**
@@ -1349,7 +1374,7 @@ public function settings_sub_tabs() {
 		 */
 		public function save_multisite_options() {
 			global $rtmedia_admin;
-			do_action( 'rtmedia_sanitize_settings', wp_unslash( $_POST ) ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing
+			do_action( 'rtmedia_sanitize_settings', wp_unslash( $_POST ) ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- Nonce verification is handled by network_admin_edit_ action hook which requires valid nonce and proper capabilities.
 
 			$rtmedia_options = filter_input( INPUT_POST, 'rtmedia_options' );
 			if ( isset( $rtmedia_options ) ) {
@@ -1427,11 +1452,10 @@ public function linkback() {
 		 * @access public
 		 */
 		public function export_settings() {
-
-            // permission check.
-            if ( ! current_user_can( 'manage_options' ) ) {
-	            wp_send_json_error( array( 'message' => esc_html__( 'You do not have permission to export settings.', 'buddypress-media' ) ) );
-            }
+			// permission check.
+			if ( ! current_user_can( 'manage_options' ) ) {
+				wp_send_json_error( array( 'message' => esc_html__( 'You do not have permission to export settings.', 'buddypress-media' ) ) );
+			}
 
 			$rtmedia_option = get_option( 'rtmedia-options' );
 
@@ -1459,8 +1483,18 @@ public function import_settings( $file_path ) {
 				wp_send_json( $response );
 			}
 
-			$settings_data_json_string = file_get_contents( $file_path );
-			$settings_data_json = json_decode( $settings_data_json_string, true );
+			if ( ! function_exists( 'WP_Filesystem' ) ) {
+				require_once ABSPATH . 'wp-admin/includes/file.php';
+			}
+
+			global $wp_filesystem;
+
+			if ( ! $wp_filesystem ) {
+				WP_Filesystem();
+			}
+
+			$settings_data_json_string = $wp_filesystem->get_contents( $file_path );
+			$settings_data_json        = json_decode( $settings_data_json_string, true );
 			wp_delete_file( $file_path );
 
 			if ( empty( $settings_data_json ) ) {
@@ -1489,14 +1523,12 @@ public function import_settings( $file_path ) {
 			if ( $new_value === $old_value ) {
 				$response['rtm_response']     = 'error';
 				$response['rtm_response_msg'] = esc_html__( 'Data passed for settings is unchanged!', 'buddypress-media' );
-			} else {
-				if ( update_option( 'rtmedia-options', $settings_data ) ) {
+			} elseif ( update_option( 'rtmedia-options', $settings_data ) ) {
 					$response['rtm_response']     = 'success';
 					$response['rtm_response_msg'] = esc_html__( 'rtMedia Settings imported successfully!', 'buddypress-media' );
-				} else {
-					$response['rtm_response']     = 'error';
-					$response['rtm_response_msg'] = esc_html__( 'Could not update rtMedia Settings', 'buddypress-media' );
-				}
+			} else {
+				$response['rtm_response']     = 'error';
+				$response['rtm_response_msg'] = esc_html__( 'Could not update rtMedia Settings', 'buddypress-media' );
 			}
 
 			wp_send_json( $response );
@@ -1506,7 +1538,8 @@ public function import_settings( $file_path ) {
 		 * Ajax callback function Convert videos mailchimp.
 		 */
 		public function convert_videos_mailchimp_send() {
-			// todo: nonce required.
+			// todo: nonce required. -- Not required since this AJAX action is not being used anymore and will be removed in future version.
+
 			$interested = sanitize_text_field( filter_input( INPUT_POST, 'linkback', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
 			$choice     = sanitize_text_field( filter_input( INPUT_POST, 'choice', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
 			$url        = filter_input( INPUT_POST, 'url', FILTER_SANITIZE_URL );
@@ -1746,22 +1779,22 @@ public function rtm_addon_license_notice() {
 		 * Display GoDAM banner admin notice
 		 */
 		public function install_godam_admin_notice() {
-			// Get the current page from the URL (e.g., ?page=rtmedia-settings)
-			$current_page = isset($_GET['page']) ? $_GET['page'] : '';
+			// Get the current page from the URL (e.g., ?page=rtmedia-settings).
+			$current_page = isset( $_GET['page'] ) ? sanitize_text_field( wp_unslash( $_GET['page'] ) ) : ''; // phpcs:ignore WordPress.Security.NonceVerification.Recommended -- No nonce needed, just reading a value.
 
-			// List of pages where the banner should be shown
+			// List of pages where the banner should be shown.
 			$pages = self::$rtmedia_pages;
 
-			// Check if the current page is one of the defined pages
-			if (in_array($current_page, $pages, true)) {
-				// Check if the banner has been dismissed
-				$banner_dismissed = get_user_meta(get_current_user_id(), 'install_godam_hide_notice', true);
+			// Check if the current page is one of the defined pages.
+			if ( in_array( $current_page, $pages, true ) ) {
+				// Check if the banner has been dismissed.
+				$banner_dismissed = get_user_meta( get_current_user_id(), 'install_godam_hide_notice', true );
 
-				if (!$banner_dismissed) {
+				if ( ! $banner_dismissed ) {
 					?>
 					<div class="notice godam-admin-banner is-dismissible" style="position: relative; display:block; margin: 12px 0; padding: 0; width: 100%;">
 						<div class="godam-banner-wrapper">
-							<img src="<?php echo esc_url(RTMEDIA_URL . 'app/assets/img/godam-banner-2.png'); ?>" alt="Godam Banner" style="display: block; max-width: 100%; height: auto;">
+							<img src="<?php echo esc_url( RTMEDIA_URL . 'app/assets/img/godam-banner-2.png' ); ?>" alt="Godam Banner" style="display: block; max-width: 100%; height: auto;">
 							<a href="https://godam.io?utm_source=rtmedia&utm_medium=banner&utm_campaign=godam_promo" target="_blank" style="
 								position: absolute;
 								top: 65%;
@@ -1780,25 +1813,6 @@ public function install_godam_admin_notice() {
 							</a>
 						</div>
 					</div>
-
-					<script type="text/javascript">
-						// Ensure jQuery is loaded
-						jQuery(document).ready(function($) {
-							// Handle dismissal of the banner
-							$(document).on('click', '.godam-admin-banner .notice-dismiss', function() {
-								// Send AJAX request to mark the banner as dismissed
-								var data = {
-									action: 'install_godam_hide_admin_notice', // action hook
-									security: '<?php echo wp_create_nonce('install-godam-hide-notice'); ?>' // nonce for security
-								};
-
-								// Perform the AJAX request
-								$.post(ajaxurl, data, function(response) {
-									console.log('Notice dismissed and saved.');
-								});
-							});
-						});
-					</script>
 					<?php
 				}
 			}
@@ -1808,18 +1822,19 @@ public function install_godam_admin_notice() {
 		 * AJAX callback to hide GoDAM admin notice
 		 */
 		public function install_godam_hide_admin_notice() {
-			// Verify nonce for security
-			if (!isset($_POST['security']) || !wp_verify_nonce($_POST['security'], 'install-godam-hide-notice')) {
-				wp_die('Nonce verification failed');
+			// Verify nonce for security.
+			$nonce = isset( $_POST['security'] ) ? sanitize_text_field( wp_unslash( $_POST['security'] ) ) : '';
+
+			if ( ! wp_verify_nonce( $nonce, 'install-godam-hide-notice' ) ) {
+				wp_send_json_error( 'Nonce verification failed' );
 			}
 
-			// Update user meta to remember the dismissal
-			update_user_meta(get_current_user_id(), 'install_godam_hide_notice', true);
+			// Update user meta to remember the dismissal.
+			update_user_meta( get_current_user_id(), 'install_godam_hide_notice', true );
 
-			// Respond back to the AJAX request
-			wp_send_json_success('Notice dismissed');
+			// Respond back to the AJAX request.
+			wp_send_json_success( 'Notice dismissed' );
 		}
-
 	}
 
 }
diff --git a/app/admin/RTMediaFormHandler.php b/app/admin/RTMediaFormHandler.php
index 32f3d372f..4f83154b0 100755
--- a/app/admin/RTMediaFormHandler.php
+++ b/app/admin/RTMediaFormHandler.php
@@ -1207,31 +1207,6 @@ public static function buddypress_content() {
 		self::render_tab_content( $render_options, $general_group, 10 );
 
 		do_action( 'rtmedia_buddypress_setting_content' );
-		/**
-		 * Disable inputs and change background color to differentiate disabled inputs,
-		 * if 'Activity Streams' component is disabled in BuddyPress Settings.
-		 */
-		if ( ! bp_is_active( 'activity' ) ) {
-			?>
-			<script>
-				jQuery( '#rtmedia-bp-enable-activity, #rtmedia-enable-comment-activity, #rtmedia-enable-like-activity' )
-					.prop( "disabled", true )
-					.next().css( 'background-color', '#808080' );
-				jQuery( '#rtmedia-activity-feed-limit' ).prop( "disabled", true );
-			</script>
-			<?php
-		}
-		/**
-		 * Disable inputs and change background color to differentiate disabled inputs,
-		 * if 'User Groups' component is disabled in BuddyPress Settings.
-		 */
-		if ( ! bp_is_active( 'groups' ) ) {
-			?>
-			<script>
-				jQuery( '#rtmedia-enable-on-group' ).prop( "disabled", true ).next().css( 'background-color', '#808080' );
-			</script>
-			<?php
-		}
 	}
 
 	/**
diff --git a/app/admin/RTMediaUploadTermsAdmin.php b/app/admin/RTMediaUploadTermsAdmin.php
index 5628bd62c..c8dd3f57e 100755
--- a/app/admin/RTMediaUploadTermsAdmin.php
+++ b/app/admin/RTMediaUploadTermsAdmin.php
@@ -66,7 +66,6 @@ public function enqueue_scripts_styles() {
 			);
 
 			wp_localize_script( 'rtmedia-upload-terms-main', 'rtm_upload_terms_error_msgs', $translation_data );
-
 		}
 
 		/**
diff --git a/app/admin/templates/dashboard-widgets/right-now.php b/app/admin/templates/dashboard-widgets/right-now.php
index ff69ee897..94af05638 100644
--- a/app/admin/templates/dashboard-widgets/right-now.php
+++ b/app/admin/templates/dashboard-widgets/right-now.php
@@ -19,7 +19,8 @@
 			global $wpdb;
 			$results = wp_cache_get( 'rt-stats', 'rt-dashboard' );
 			if ( false === $results ) {
-				$results = $wpdb->get_results( $wpdb->prepare( "select media_type, count(id) as count from {$rtmedia_model->table_name} where blog_id=%d group by media_type", get_current_blog_id() ) );
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query required; safe because table name is trusted.
+				$results = $wpdb->get_results( $wpdb->prepare( "SELECT media_type, count(id) as count FROM {$rtmedia_model->table_name} WHERE blog_id=%d GROUP BY media_type", get_current_blog_id() ) );
 				wp_cache_set( 'stats', $results, 'rt-dashboard', HOUR_IN_SECONDS );
 			}
 			if ( $results ) {
@@ -47,6 +48,7 @@
 			<?php
 			$total_count = wp_cache_get( 'total_count', 'rt-dashboard' );
 			if ( false === $total_count ) {
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query required; safe because table name is trusted.
 				$total_count = $wpdb->get_var( "select count(*) from {$wpdb->users}" );
 				wp_cache_set( 'total_count', $total_count, 'rt-dashboard', HOUR_IN_SECONDS );
 			}
@@ -58,7 +60,8 @@
 			<?php
 			$with_media_count = wp_cache_get( 'with_media', 'rt-dashboard' );
 			if ( false === $with_media_count ) {
-				$with_media_count = $wpdb->get_var( "select count(distinct media_author) from {$rtmedia_model->table_name}" );
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query required; safe because table name is trusted.
+				$with_media_count = $wpdb->get_var( "SELECT count(distinct media_author) FROM {$rtmedia_model->table_name}" );
 				wp_cache_set( 'with_media', $with_media_count, 'rt-dashboard', HOUR_IN_SECONDS );
 			}
 			?>
@@ -69,7 +72,8 @@
 			<?php
 			$comments = wp_cache_get( 'comments', 'rt-dashboard' ); // phpcs:ignore WordPress.WP.GlobalVariablesOverride.Prohibited
 			if ( false === $comments ) {
-				$comments = $wpdb->get_var( "select count(*) from {$wpdb->comments} where comment_post_ID in ( select media_id from {$rtmedia_model->table_name} )" ); // phpcs:ignore WordPress.WP.GlobalVariablesOverride.Prohibited
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.WP.GlobalVariablesOverride.Prohibited, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+				$comments = $wpdb->get_var( "SELECT count(*) FROM {$wpdb->comments} WHERE comment_post_ID IN ( SELECT media_id FROM {$rtmedia_model->table_name} )" );
 				wp_cache_set( 'comments', $comments, 'rt-dashboard', HOUR_IN_SECONDS );
 			}
 			?>
@@ -80,7 +84,8 @@
 			<?php
 			$likes = wp_cache_get( 'likes', 'rt-dashboard' );
 			if ( false === $likes ) {
-				$likes = $wpdb->get_var( "select sum(likes) from {$rtmedia_model->table_name}" );
+    			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query required; safe because table name is trusted.
+				$likes = $wpdb->get_var( "SELECT sum(likes) FROM {$rtmedia_model->table_name}" );
 				wp_cache_set( 'likes', $likes, 'rt-dashboard', HOUR_IN_SECONDS );
 			}
 			?>
diff --git a/app/admin/templates/notices/addon-update.php b/app/admin/templates/notices/addon-update.php
index 9afcadebc..6a63ab871 100644
--- a/app/admin/templates/notices/addon-update.php
+++ b/app/admin/templates/notices/addon-update.php
@@ -27,16 +27,3 @@
 		<?php wp_nonce_field( 'rtmedia-addon-update-notice-3_8', 'rtmedia-addon-notice' ); ?>
 	</p>
 </div>
-<script type="text/javascript">
-	jQuery( document ).ready( function() {
-		jQuery( '.rtmedia-addon-update-notice.is-dismissible' ).on( 'click', '.notice-dismiss', function() {
-			var data = {
-				action: 'rtmedia_hide_addon_update_notice',
-				_rtm_nonce: jQuery('#rtmedia-addon-notice').val(),
-			};
-			jQuery.post(ajaxurl, data, function (response) {
-				jQuery('.rtmedia-addon-update-notice').remove();
-			});
-		});
-	});
-</script>
diff --git a/app/admin/templates/notices/inspirebook-release.php b/app/admin/templates/notices/inspirebook-release.php
index 82f3a3bb7..a76f03a60 100644
--- a/app/admin/templates/notices/inspirebook-release.php
+++ b/app/admin/templates/notices/inspirebook-release.php
@@ -20,16 +20,3 @@
 	</p>
 </div>
 
-<script type="text/javascript">
-	jQuery( document ).ready( function() {
-		jQuery( '.rtmedia-inspire-book-notice.is-dismissible' ).on( 'click', '.notice-dismiss', function() {
-			var data = {
-				action: 'rtmedia_hide_inspirebook_release_notice',
-				_rtm_nonce: jQuery('#rtmedia_hide_inspirebook_nonce').val()
-			};
-			jQuery.post( ajaxurl, data, function ( response ) {
-				jQuery('.rtmedia-inspire-book-notice').remove();
-			});
-		});
-	});
-</script>
diff --git a/app/admin/templates/notices/premium-addon.php b/app/admin/templates/notices/premium-addon.php
index 61b81d0ba..716a280f0 100644
--- a/app/admin/templates/notices/premium-addon.php
+++ b/app/admin/templates/notices/premium-addon.php
@@ -30,13 +30,3 @@
 	</p>
 </div>
 
-<script type="text/javascript">
-	jQuery( document ).ready( function() {
-		jQuery( '.rtmedia-pro-split-notice.is-dismissible' ).on( 'click', '.notice-dismiss', function() {
-			var data = {action: 'rtmedia_hide_premium_addon_notice', _rtm_nonce: jQuery('#rtm_nonce').val() };
-			jQuery.post( ajaxurl, data, function ( response ) {
-				jQuery('.rtmedia-pro-split-notice').remove();
-			});
-		});
-	});
-</script>
diff --git a/app/admin/templates/notices/transcoder.php b/app/admin/templates/notices/transcoder.php
index 0706fff23..fb0a868a3 100644
--- a/app/admin/templates/notices/transcoder.php
+++ b/app/admin/templates/notices/transcoder.php
@@ -7,17 +7,17 @@
 
 // Include plugin.php if not already loaded.
 if ( ! function_exists( 'is_plugin_active' ) ) {
-    include_once ABSPATH . 'wp-admin/includes/plugin.php';
+	include_once ABSPATH . 'wp-admin/includes/plugin.php';
 }
 
 // If GoDAM is active right now, set a permanent flag.
 if ( is_plugin_active( 'godam/godam.php' ) ) {
-    update_option( 'godam_plugin_activated_once', true );
+	update_option( 'godam_plugin_activated_once', true );
 }
 
 // If the permanent flag is set, never show the notice.
 if ( get_option( 'godam_plugin_activated_once' ) ) {
-    return;
+	return;
 }
 
 ?>
@@ -36,16 +36,4 @@
 		?>
 	</p>
 </div>
-<script type="text/javascript">
-	jQuery( document ).ready( function() {
-		jQuery( '.install-transcoder-notice.is-dismissible' ).on( 'click', '.notice-dismiss', function() {
-			var data = {
-				action: 'install_transcoder_hide_admin_notice',
-				install_transcoder_notice_nonce: jQuery('#install_transcoder_hide_notice_nonce').val()
-			};
-			jQuery.post( ajaxurl, data, function ( response ) {
-				jQuery('.install-transcoder-notice').remove();
-			});
-		});
-	});
-</script>
+
diff --git a/app/admin/templates/notices/update-template.php b/app/admin/templates/notices/update-template.php
index 450f80803..888180a44 100644
--- a/app/admin/templates/notices/update-template.php
+++ b/app/admin/templates/notices/update-template.php
@@ -10,19 +10,9 @@
 <div class="error rtmedia-update-template-notice">
 	<p>
 		<?php esc_html_e( 'Please update rtMedia template files if you have overridden the default rtMedia templates in your theme. If not, you can ignore and hide this notice.', 'buddypress-media' ); ?>
-		<a href="#" onclick="rtmedia_hide_template_override_notice('<?php echo esc_js( wp_create_nonce( 'rtmedia_template_notice' ) ); ?>')" style="float:right">
+		<a href="#" id="rtmedia-hide-template-notice" data-nonce="<?php echo esc_js( wp_create_nonce( 'rtmedia_template_notice' ) ); ?>" style="float:right">
 			<?php esc_html_e( 'Hide', 'buddypress-media' ); ?>
 		</a>
 	</p>
 </div>
 
-<script type="text/javascript">
-	function rtmedia_hide_template_override_notice( rtmedia_template_notice_nonce ) {
-		var data = {action: 'rtmedia_hide_template_override_notice', _rtm_nonce: rtmedia_template_notice_nonce };
-		jQuery.post(ajaxurl, data, function (response) {
-			response = response.trim();
-			if ('1' === response)
-				jQuery('.rtmedia-update-template-notice').remove();
-		});
-	}
-</script>
diff --git a/app/admin/templates/notices/upload-file-types.php b/app/admin/templates/notices/upload-file-types.php
index e4897117b..3aa8fd920 100644
--- a/app/admin/templates/notices/upload-file-types.php
+++ b/app/admin/templates/notices/upload-file-types.php
@@ -27,7 +27,6 @@
 			</p>
 		</div>
 		<?php
-		$flag = true;
 	}
 }
 
@@ -48,7 +47,6 @@
 			</p>
 		</div>
 		<?php
-		$flag = true;
 	}
 }
 
@@ -57,6 +55,7 @@
 		?>
 		<div class="error upload-filetype-network-settings-error">
 			<p>
+				<?php wp_nonce_field( '_rtm_file_type_error_', 'rtm-file-type-error' ); ?>
 				<?php esc_html_e( 'You have audio enabled on BuddyPress Media but your network allowed filetypes do not permit uploading of mp3. Click ', 'buddypress-media' ); ?>
 				<a href="<?php echo esc_url( network_admin_url( 'settings.php#upload_filetypes' ) ); ?>">
 					<?php esc_html_e( 'here', 'buddypress-media' ); ?>
@@ -69,24 +68,6 @@
 			</p>
 		</div>
 		<?php
-		$flag = true;
-	}
-}
 
-if ( $flag ) {
-	?>
-	<script type="text/javascript">
-		jQuery('.upload-filetype-network-settings-error').on('click', '.update-network-settings-upload-filetypes', function () {
-			jQuery('.update-network-settings-upload-filetypes').siblings('img').show();
-			jQuery('.update-network-settings-upload-filetypes').prop('disabled', true);
-			jQuery.post(ajaxurl, {action: 'rtmedia_correct_upload_filetypes', _rtm_nonce: jQuery('rtm-file-type-error').val()}, function (response) {
-				if (response) {
-					jQuery('.upload-filetype-network-settings-error:first').after('<div style="display: none;" class="updated rtmedia-network-settings-updated-successfully"><p><?php esc_html_e( 'Network settings updated successfully.', 'buddypress-media' ); ?></p></div>');
-					jQuery('.upload-filetype-network-settings-error').remove();
-					jQuery('.bp-media-network-settings-updated-successfully').show();
-				}
-			});
-		});
-	</script>
-	<?php
+	}
 }
diff --git a/app/admin/templates/settings/main.php b/app/admin/templates/settings/main.php
index 58a6eec07..79879f4e0 100644
--- a/app/admin/templates/settings/main.php
+++ b/app/admin/templates/settings/main.php
@@ -24,6 +24,7 @@
 						</div>
 					<?php } ?>
 					<input type="hidden" name="rtmedia-options-save" value="true">
+					<?php wp_nonce_field( 'rtmedia_settings', 'wp_nonce' ); ?>
 					<input type="submit" class="rtmedia-settings-submit button button-primary button-big" value="<?php esc_attr_e( 'Save Settings', 'buddypress-media' ); ?>">
 				</div>
 				<?php
@@ -55,6 +56,7 @@
 					</div>
 
 					<input type="hidden" name="rtmedia-options-save" value="true">
+					<?php wp_nonce_field( 'rtmedia_settings', 'wp_nonce' ); ?>
 					<input type="submit" class="rtmedia-settings-submit button button-primary button-big" value="<?php esc_attr_e( 'Save Settings', 'buddypress-media' ); ?>">
 				</div>
 			</div>
@@ -71,12 +73,10 @@
 				$rtmedia_support->render_support( $page_name );
 			} elseif ( 'rtmedia-themes' === $page_name ) {
 				RTMediaThemes::render_themes( $page_name );
-			} else {
-				if ( 'rtmedia-license' === $page_name ) {
+			} elseif ( 'rtmedia-license' === $page_name ) {
 					RTMediaLicense::render_license( $page_name );
-				} else {
-					do_settings_sections( $page_name );
-				}
+			} else {
+				do_settings_sections( $page_name );
 			}
 			do_action( 'rtmedia_admin_page_insert', $page_name );
 			?>
diff --git a/app/admin/templates/settings/media-sizes.php b/app/admin/templates/settings/media-sizes.php
index 1127048b9..5e3cd43ad 100644
--- a/app/admin/templates/settings/media-sizes.php
+++ b/app/admin/templates/settings/media-sizes.php
@@ -56,7 +56,7 @@
 					?>
 				</tr>
 				<?php
-				$count ++;
+				$count++;
 			}
 		}
 		?>
diff --git a/app/assets/admin/js/importer.js b/app/assets/admin/js/importer.js
new file mode 100644
index 000000000..9ad9af980
--- /dev/null
+++ b/app/assets/admin/js/importer.js
@@ -0,0 +1,124 @@
+jQuery(document).ready(function () {
+	var $root = jQuery('#rtm-importer-root');
+	if (!$root.length) {
+		return;
+	}
+
+	var importerType = $root.data('importer');
+	var done = parseInt($root.data('done') || 0, 10);
+	var total = parseInt($root.data('total') || 0, 10);
+	var lastId = parseInt($root.data('last-id') || 0, 10);
+	var nonceFieldId = String($root.data('nonce-field-id') || '');
+	var adminAjax = String($root.data('admin-ajax') || (window.rtmedia_admin && window.rtmedia_admin.rtmedia_admin_ajax) || '');
+
+	if (total < 1) {
+		jQuery('#submit').attr('disabled', 'disabled');
+	}
+
+	function updateProgressBar(currentDone, currentTotal) {
+		var pct = Math.ceil((currentDone / currentTotal) * 100);
+		if (pct > 100) {
+			pct = 100;
+		}
+		jQuery('#rtprogressbar>div').css('width', pct + '%');
+		jQuery('span.finished').text(currentDone);
+		jQuery('span.total').text(currentTotal);
+	}
+
+	function showPending(pendingText) {
+		jQuery('span.pending').text(pendingText);
+	}
+
+	function showSyncing(show) {
+		if (show) {
+			jQuery('#rtMediaSyncing').show();
+		} else {
+			jQuery('#rtMediaSyncing').hide();
+		}
+	}
+
+	var failedIds = [];
+
+	function startMigration(currentDone, currentTotal, lastProcessedId) {
+		if (currentDone < currentTotal) {
+			showSyncing(true);
+
+			var action = '';
+			if ('media-size' === importerType) {
+				action = 'rtmedia_media_size_import';
+			} else if ('activity-upgrade' === importerType) {
+				action = 'rtmedia_activity_upgrade';
+			}
+
+			var ajaxData = {
+				action: action,
+				done: currentDone,
+				last_id: lastProcessedId,
+				nonce: jQuery.trim(jQuery('#' + nonceFieldId).val())
+			};
+
+			jQuery.ajax({
+				url: adminAjax,
+				type: 'post',
+				data: ajaxData
+			}).done(function (sdata) {
+				var data;
+				try {
+					data = JSON.parse(sdata);
+				} catch (e) {
+					jQuery('#submit').attr('disabled', '');
+					return;
+				}
+
+				if (data && data.status) {
+					var newDone = parseInt(data.done, 10);
+					var newTotal = parseInt(data.total, 10);
+					updateProgressBar(newDone, newTotal);
+					showPending(data.pending);
+
+					if ('media-size' === importerType) {
+						if (data.imported === false) {
+							failedIds.push(data.media_id);
+						}
+						startMigration(newDone, newTotal, parseInt(data.media_id, 10));
+					} else {
+						if (data.imported === false) {
+							failedIds.push(data.activity_id);
+						}
+						startMigration(newDone, newTotal, parseInt(data.activity_id, 10));
+					}
+				} else {
+					alert('Migration completed.');
+					showSyncing(false);
+				}
+			}).fail(function () {
+				alert('Error During Migration, Please Refresh Page then try again');
+				jQuery('#submit').removeAttr('disabled');
+			});
+		} else {
+			if ('activity-upgrade' === importerType) {
+				jQuery.post(adminAjax, { action: 'rtmedia_activity_done_upgrade' }, function () {
+					alert('Database upgrade completed.');
+				});
+			} else {
+				alert('Migration completed.');
+			}
+
+			if (failedIds.length > 0) {
+				if ('media-size' === importerType) {
+					jQuery('span.pending').text('Media with ID: ' + failedIds.join(', ') + " can not be imported. Please check your server error log for more details. Don't worry, you can end importing media size now :)");
+				} else {
+					jQuery('span.pending').html("Some activities are failed to upgrade, Don't worry about that.");
+				}
+			}
+
+			showSyncing(false);
+		}
+	}
+
+	jQuery(document).on('click', '#submit', function (e) {
+		e.preventDefault();
+		jQuery(this).attr('disabled', 'disabled');
+		startMigration(done, total, lastId);
+	});
+});
\ No newline at end of file
diff --git a/app/assets/admin/js/importer.min.js b/app/assets/admin/js/importer.min.js
new file mode 100644
index 000000000..22162ebf5
--- /dev/null
+++ b/app/assets/admin/js/importer.min.js
@@ -0,0 +1 @@
+jQuery(document).ready((function(){var e=jQuery("#rtm-importer-root");if(e.length){var t=e.data("importer"),a=parseInt(e.data("done")||0,10),i=parseInt(e.data("total")||0,10),r=parseInt(e.data("last-id")||0,10),n=String(e.data("nonce-field-id")||""),d=String(e.data("admin-ajax")||window.rtmedia_admin&&window.rtmedia_admin.rtmedia_admin_ajax||"");i<1&&jQuery("#submit").attr("disabled","disabled");var o=[];jQuery(document).on("click","#submit",(function(e){e.preventDefault(),jQuery(this).attr("disabled","disabled"),u(a,i,r)}))}function s(e){e?jQuery("#rtMediaSyncing").show():jQuery("#rtMediaSyncing").hide()}function u(e,a,i){if(e<a){s(!0);var r="";"media-size"===t?r="rtmedia_media_size_import":"activity-upgrade"===t&&(r="rtmedia_activity_upgrade");var p={action:r,done:e,last_id:i,nonce:jQuery.trim(jQuery("#"+n).val())};jQuery.ajax({url:d,type:"post",data:p}).done((function(e){var a,i;try{a=JSON.parse(e)}catch(e){return void jQuery("#submit").attr("disabled","")}if(a&&a.status){var r=parseInt(a.done,10),n=parseInt(a.total,10);!function(e,t){var a=Math.ceil(e/t*100);a>100&&(a=100),jQuery("#rtprogressbar>div").css("width",a+"%"),jQuery("span.finished").text(e),jQuery("span.total").text(t)}(r,n),i=a.pending,jQuery("span.pending").text(i),"media-size"===t?(!1===a.imported&&o.push(a.media_id),u(r,n,parseInt(a.media_id,10))):(!1===a.imported&&o.push(a.activity_id),u(r,n,parseInt(a.activity_id,10)))}else alert("Migration completed."),s(!1)})).fail((function(){alert("Error During Migration, Please Refresh Page then try again"),jQuery("#submit").removeAttr("disabled")}))}else"activity-upgrade"===t?jQuery.post(d,{action:"rtmedia_activity_done_upgrade"},(function(){alert("Database upgrade completed.")})):alert("Migration completed."),o.length>0&&("media-size"===t?jQuery("span.pending").text("Media with ID: "+o.join(", ")+" can not be imported. Please check your server error log for more details. Don't worry, you can end importing media size now :)"):jQuery("span.pending").html("Some activities are failed to upgrade, Don't worry about that.")),s(!1)}}));
\ No newline at end of file
diff --git a/app/assets/admin/js/migration.js b/app/assets/admin/js/migration.js
new file mode 100644
index 000000000..50ce1ad38
--- /dev/null
+++ b/app/assets/admin/js/migration.js
@@ -0,0 +1,86 @@
+jQuery(function ($) {
+	if (typeof window.rtmedia_migration === 'undefined') {
+		return;
+	}
+
+	var done = parseInt(window.rtmedia_migration.done || 0, 10);
+	var total = parseInt(window.rtmedia_migration.total || 0, 10);
+	var adminAjax = String(window.rtmedia_migration.admin_ajax || '');
+
+	$("#toplevel_page_rtmedia-settings").addClass("wp-has-current-submenu");
+	$("#toplevel_page_rtmedia-settings").removeClass("wp-not-current-submenu");
+	$("#toplevel_page_rtmedia-settings").addClass("wp-menu-open");
+	$("#toplevel_page_rtmedia-settings>a").addClass("wp-menu-open");
+	$("#toplevel_page_rtmedia-settings>a").addClass("wp-has-current-submenu");
+
+	if (total < 1) {
+		$("#submit").attr("disabled", "disabled");
+	}
+
+	function updateProgress(currentDone, currentTotal, pendingText) {
+		var pct = Math.ceil((currentDone / currentTotal) * 100);
+		if (pct > 100) {
+			pct = 100;
+		}
+		$("#rtprogressbar>div").css("width", pct + "%");
+		$("span.finished").text(currentDone);
+		$("span.total").text(currentTotal);
+		if (typeof pendingText !== 'undefined') {
+			$("span.pending").text(pendingText);
+		}
+	}
+
+	function showSyncing(show) {
+		if (show) {
+			$("#rtMediaSyncing").show();
+		} else {
+			$("#rtMediaSyncing").hide();
+		}
+	}
+
+	function dbStartMigration(currentDone, currentTotal) {
+		if (currentDone < currentTotal) {
+			showSyncing(true);
+			$.ajax({
+				url: adminAjax,
+				type: 'post',
+				data: {
+					action: 'bp_media_rt_db_migration',
+					done: currentDone
+				}
+			}).done(function (sdata) {
+				var data;
+				try {
+					data = JSON.parse(sdata);
+				} catch (e) {
+					$("#submit").attr('disabled', '');
+					return;
+				}
+
+				if (data && data.status) {
+					var newDone = parseInt(data.done, 10);
+					var newTotal = parseInt(data.total, 10);
+					updateProgress(newDone, newTotal, data.pending);
+					dbStartMigration(newDone, newTotal);
+				} else {
+					alert('Migration completed.');
+					showSyncing(false);
+				}
+			}).fail(function () {
+				alert('Error During Migration, Please Refresh Page then try again');
+				$("#submit").removeAttr('disabled');
+			});
+		} else {
+			alert('Migration completed.');
+			showSyncing(false);
+		}
+	}
+
+	$(document).on('click', '#submit', function (e) {
+		e.preventDefault();
+		dbStartMigration(done, total);
+		$(this).attr('disabled', 'disabled');
+	});
+});
+
+
diff --git a/app/assets/admin/js/migration.min.js b/app/assets/admin/js/migration.min.js
new file mode 100644
index 000000000..6203942c3
--- /dev/null
+++ b/app/assets/admin/js/migration.min.js
@@ -0,0 +1 @@
+jQuery((function(t){if(void 0!==window.rtmedia_migration){var e=parseInt(window.rtmedia_migration.done||0,10),a=parseInt(window.rtmedia_migration.total||0,10),i=String(window.rtmedia_migration.admin_ajax||"");t("#toplevel_page_rtmedia-settings").addClass("wp-has-current-submenu"),t("#toplevel_page_rtmedia-settings").removeClass("wp-not-current-submenu"),t("#toplevel_page_rtmedia-settings").addClass("wp-menu-open"),t("#toplevel_page_rtmedia-settings>a").addClass("wp-menu-open"),t("#toplevel_page_rtmedia-settings>a").addClass("wp-has-current-submenu"),a<1&&t("#submit").attr("disabled","disabled"),t(document).on("click","#submit",(function(i){i.preventDefault(),r(e,a),t(this).attr("disabled","disabled")}))}function n(e){e?t("#rtMediaSyncing").show():t("#rtMediaSyncing").hide()}function r(e,a){e<a?(n(!0),t.ajax({url:i,type:"post",data:{action:"bp_media_rt_db_migration",done:e}}).done((function(e){var a;try{a=JSON.parse(e)}catch(e){return void t("#submit").attr("disabled","")}if(a&&a.status){var i=parseInt(a.done,10),s=parseInt(a.total,10);!function(e,a,i){var n=Math.ceil(e/a*100);n>100&&(n=100),t("#rtprogressbar>div").css("width",n+"%"),t("span.finished").text(e),t("span.total").text(a),void 0!==i&&t("span.pending").text(i)}(i,s,a.pending),r(i,s)}else alert("Migration completed."),n(!1)})).fail((function(){alert("Error During Migration, Please Refresh Page then try again"),t("#submit").removeAttr("disabled")}))):(alert("Migration completed."),n(!1))}}));
\ No newline at end of file
diff --git a/app/assets/admin/js/rtmedia-admin.js b/app/assets/admin/js/rtmedia-admin.js
new file mode 100644
index 000000000..be2c4b4f6
--- /dev/null
+++ b/app/assets/admin/js/rtmedia-admin.js
@@ -0,0 +1,114 @@
+jQuery(document).ready(function($) {
+    // Handle dismissal of the GoDAM banner
+	$(document).on('click', '.godam-admin-banner .notice-dismiss', function() {
+		// Send AJAX request to mark the banner as dismissed
+		var data = {
+		    action: 'install_godam_hide_admin_notice', // action hook
+			security: window?.rtmedia_rtmedia_admin?.godam_banner_nonce // nonce for security
+		};
+
+		// Perform the AJAX request
+		$.post(ajaxurl, data, function(response) {
+			console.log('Notice dismissed and saved.');
+		});
+    });
+
+	/**
+	 * Disable inputs and change background color to differentiate disabled inputs,
+	 * if 'Activity Streams' component is disabled in BuddyPress Settings.
+	 */
+	if ( ! window?.rtmedia_rtmedia_admin?.bp_is_active__activity ) {
+		$('#rtmedia-bp-enable-activity, #rtmedia-enable-comment-activity, #rtmedia-enable-like-activity')
+			.prop('disabled', true)
+			.next().css('background-color', '#808080');
+	
+		$('#rtmedia-activity-feed-limit').prop('disabled', true);
+	}
+
+	/**
+     * Disable inputs and change background color to differentiate disabled inputs,
+	 * if 'User Groups' component is disabled in BuddyPress Settings.
+	 */
+	if ( ! window?.rtmedia_rtmedia_admin?.bp_is_active__groups) {
+		$('#rtmedia-enable-on-group')
+			.prop('disabled', true)
+			.next().css('background-color', '#808080');
+	}
+
+	// Handle Notices
+	// Addon update notice dismissal
+	$( '.rtmedia-addon-update-notice.is-dismissible' ).on( 'click', '.notice-dismiss', function() {
+		var data = {
+			action: 'rtmedia_hide_addon_update_notice',
+			_rtm_nonce: $('#rtmedia-addon-notice').val(),
+		};
+		$.post(ajaxurl, data, function (response) {
+			$('.rtmedia-addon-update-notice').remove();
+		});
+	});
+
+	// InspireBook release notice dismissal
+	$( '.rtmedia-inspire-book-notice.is-dismissible' ).on( 'click', '.notice-dismiss', function() {
+		var data = {
+			action: 'rtmedia_hide_inspirebook_release_notice',
+			_rtm_nonce: $('#rtmedia_hide_inspirebook_nonce').val()
+		};
+		$.post( ajaxurl, data, function ( response ) {
+			$('.rtmedia-inspire-book-notice').remove();
+		});
+	});
+
+	// Premium Addon notice dismissal
+	$( '.rtmedia-pro-split-notice.is-dismissible' ).on( 'click', '.notice-dismiss', function() {
+		var data = {action: 'rtmedia_hide_premium_addon_notice', _rtm_nonce: $('#rtm_nonce').val() };
+		$.post( ajaxurl, data, function ( response ) {
+			$('.rtmedia-pro-split-notice').remove();
+		});
+	});
+
+	// Transcoder notice dismissal
+	$( '.install-transcoder-notice.is-dismissible' ).on( 'click', '.notice-dismiss', function() {
+		var data = {
+			action: 'install_transcoder_hide_admin_notice',
+			install_transcoder_notice_nonce: $('#install_transcoder_hide_notice_nonce').val()
+		};
+		$.post( ajaxurl, data, function ( response ) {
+			$('.install-transcoder-notice').remove();
+		});
+	});
+
+	// Media Size Import notice dismissal
+	$( '#rtmedia_hide_media_size_import_notice' ).on( 'click', function() {
+		var data = {action: 'rtmedia_hide_media_size_import_notice'};
+		jQuery.post(ajaxurl, data, function (response) {
+			response = response.trim();
+			if (response === '1')
+				jQuery('.rtmedia-media-size-import-error').remove();
+		});
+	});	
+
+	// Template Override notice dismissal
+	$( '#rtmedia-hide-template-notice' ).on( 'click', function(e) {
+		e.preventDefault();
+		var nonce = $(this).data('nonce');
+		var data = {action: 'rtmedia_hide_template_override_notice', _rtm_nonce: nonce};
+		jQuery.post(ajaxurl, data, function (response) {
+			response = response.trim();
+			if (response === '1')
+				jQuery('.rtmedia-update-template-notice').remove();
+		});
+	});
+
+	$('.upload-filetype-network-settings-error').on('click', '.update-network-settings-upload-filetypes', function () {
+		$('.update-network-settings-upload-filetypes').siblings('img').show();
+		$('.update-network-settings-upload-filetypes').prop('disabled', true);
+		$.post(ajaxurl, {action: 'rtmedia_correct_upload_filetypes', _rtm_nonce: $('#rtm-file-type-error').val()}, function (response) {
+			if (response) {
+				$('.upload-filetype-network-settings-error:first').after('<div style="display: none;" class="updated rtmedia-network-settings-updated-successfully"><p>Network settings updated successfully.</p></div>');
+				$('.upload-filetype-network-settings-error').remove();
+				$('.bp-media-network-settings-updated-successfully').show();
+			}
+		});
+	});
+
+});
\ No newline at end of file
diff --git a/app/assets/admin/js/rtmedia-admin.min.js b/app/assets/admin/js/rtmedia-admin.min.js
new file mode 100644
index 000000000..fb37489da
--- /dev/null
+++ b/app/assets/admin/js/rtmedia-admin.min.js
@@ -0,0 +1 @@
+jQuery(document).ready((function(e){console.log("rtmedia-admin.js loaded",window?.rtmedia_rtmedia_admin),e(document).on("click",".godam-admin-banner .notice-dismiss",(function(){var i={action:"install_godam_hide_admin_notice",security:window?.rtmedia_rtmedia_admin?.godam_banner_nonce};e.post(ajaxurl,i,(function(e){console.log("Notice dismissed and saved.")}))})),window?.rtmedia_rtmedia_admin?.bp_is_active__activity||(e("#rtmedia-bp-enable-activity, #rtmedia-enable-comment-activity, #rtmedia-enable-like-activity").prop("disabled",!0).next().css("background-color","#808080"),e("#rtmedia-activity-feed-limit").prop("disabled",!0)),window?.rtmedia_rtmedia_admin?.bp_is_active__groups||e("#rtmedia-enable-on-group").prop("disabled",!0).next().css("background-color","#808080"),e(".rtmedia-addon-update-notice.is-dismissible").on("click",".notice-dismiss",(function(){var i={action:"rtmedia_hide_addon_update_notice",_rtm_nonce:e("#rtmedia-addon-notice").val()};e.post(ajaxurl,i,(function(i){e(".rtmedia-addon-update-notice").remove()}))})),e(".rtmedia-inspire-book-notice.is-dismissible").on("click",".notice-dismiss",(function(){var i={action:"rtmedia_hide_inspirebook_release_notice",_rtm_nonce:e("#rtmedia_hide_inspirebook_nonce").val()};e.post(ajaxurl,i,(function(i){e(".rtmedia-inspire-book-notice").remove()}))})),e(".rtmedia-pro-split-notice.is-dismissible").on("click",".notice-dismiss",(function(){var i={action:"rtmedia_hide_premium_addon_notice",_rtm_nonce:e("#rtm_nonce").val()};e.post(ajaxurl,i,(function(i){e(".rtmedia-pro-split-notice").remove()}))})),e(".install-transcoder-notice.is-dismissible").on("click",".notice-dismiss",(function(){var i={action:"install_transcoder_hide_admin_notice",install_transcoder_notice_nonce:e("#install_transcoder_hide_notice_nonce").val()};e.post(ajaxurl,i,(function(i){e(".install-transcoder-notice").remove()}))})),e("#rtmedia_hide_media_size_import_notice").on("click",(function(){console.log("clicked on rtmedia_hide_media_size_import_notice");jQuery.post(ajaxurl,{action:"rtmedia_hide_media_size_import_notice"},(function(e){"1"===(e=e.trim())&&jQuery(".rtmedia-media-size-import-error").remove()}))})),e("#rtmedia-hide-template-notice").on("click",(function(i){i.preventDefault();var t={action:"rtmedia_hide_template_override_notice",_rtm_nonce:e(this).data("nonce")};jQuery.post(ajaxurl,t,(function(e){"1"===(e=e.trim())&&jQuery(".rtmedia-update-template-notice").remove()}))})),e(".upload-filetype-network-settings-error").on("click",".update-network-settings-upload-filetypes",(function(){e(".update-network-settings-upload-filetypes").siblings("img").show(),e(".update-network-settings-upload-filetypes").prop("disabled",!0),e.post(ajaxurl,{action:"rtmedia_correct_upload_filetypes",_rtm_nonce:e("rtm-file-type-error").val()},(function(i){i&&(e(".upload-filetype-network-settings-error:first").after('<div style="display: none;" class="updated rtmedia-network-settings-updated-successfully"><p>Network settings updated successfully.</p></div>'),e(".upload-filetype-network-settings-error").remove(),e(".bp-media-network-settings-updated-successfully").show())}))}))}));
\ No newline at end of file
diff --git a/app/assets/admin/js/settings.js b/app/assets/admin/js/settings.js
index b2249f50f..19936e979 100755
--- a/app/assets/admin/js/settings.js
+++ b/app/assets/admin/js/settings.js
@@ -810,8 +810,10 @@ jQuery( document ).ready( function ( $ ) {
 			email: jQuery( '.email' ).val(),
 			url: jQuery( '.url' ).val(),
 			choice: jQuery( 'input[name="choice"]:checked' ).val(),
-			interested: jQuery( 'input[name="interested"]:checked' ).val()
+			interested: jQuery( 'input[name="interested"]:checked' ).val(),
+			wp_nonce: RTMedia_Admin_Settings_JS?.rtmedia_buddypress_convert_nonce ?? ''
 		};
+		
 		jQuery.post( ajaxurl, data, function ( response ) {
 			var p_data = {
 				msg :response,
diff --git a/app/assets/js/rtMedia.backbone.js b/app/assets/js/rtMedia.backbone.js
index 1c99c12bf..f6a4e4e1e 100755
--- a/app/assets/js/rtMedia.backbone.js
+++ b/app/assets/js/rtMedia.backbone.js
@@ -256,6 +256,7 @@ jQuery(function ($) {
             backbone: true,
             is_album: o_is_album,
             is_edit_allowed: o_is_edit_allowed,
+            wp_nonce: rtmedia_backbone_strings?.rtmedia_album_gallery_nonce,
           },
           function () {
             rtmedia_load_template_flag = false;
@@ -808,10 +809,23 @@ jQuery(function ($) {
   });
 
   if ($("#rtMedia-upload-button").length > 0) {
+    // Check if media_type is specified in shortcode via data attribute
+    var uploaderForm = jQuery("#rtmedia-uploader-form");
+    var mediaTypeFilter = uploaderForm.data("media-type");
+    
     if (
+      mediaTypeFilter &&
+      typeof rtmedia_exteansions == "object" &&
+      rtmedia_exteansions[mediaTypeFilter]
+    ) {
+      // Use the specific media type extensions from shortcode attribute
+      rtMedia_plupload_config.filters[0].extensions =
+        rtmedia_exteansions[mediaTypeFilter].join();
+    } else if (
       typeof rtmedia_upload_type_filter == "object" &&
       rtmedia_upload_type_filter.length > 0
     ) {
+      // Fallback to old method for backward compatibility
       rtMedia_plupload_config.filters[0].extensions =
         rtmedia_upload_type_filter.join();
     }
diff --git a/app/assets/js/wp67-mediaelement-init.js b/app/assets/js/wp67-mediaelement-init.js
new file mode 100644
index 000000000..9e1c50a13
--- /dev/null
+++ b/app/assets/js/wp67-mediaelement-init.js
@@ -0,0 +1,20 @@
+jQuery(document).ready(function($) {
+	// WordPress 6.7 compatibility: Initialize MediaElement if not already done
+	if (typeof wp !== 'undefined' && wp.mediaelement && wp.mediaelement.initialize) {
+		wp.mediaelement.initialize();
+	}
+
+	// Fallback for older MediaElement initialization
+	if (typeof $().mediaelementplayer !== 'undefined') {
+		$('.wp-audio-shortcode, .wp-video-shortcode').not('.mejs-container').mediaelementplayer({
+			success: function(mediaElement, domObject) {
+				// MediaElement successfully initialized
+			}
+		});
+	}
+
+	// WordPress 6.7 compatibility: Add console log to verify fixes are working
+	if (window.console && console.log) {
+		console.log('rtMedia: WordPress 6.7 compatibility mode active');
+	}
+});
\ No newline at end of file
diff --git a/app/assets/js/wp67-mediaelement-init.min.js b/app/assets/js/wp67-mediaelement-init.min.js
new file mode 100644
index 000000000..2dbbd77c5
--- /dev/null
+++ b/app/assets/js/wp67-mediaelement-init.min.js
@@ -0,0 +1 @@
+jQuery(document).ready((function(e){"undefined"!=typeof wp&&wp.mediaelement&&wp.mediaelement.initialize&&wp.mediaelement.initialize(),void 0!==e().mediaelementplayer&&e(".wp-audio-shortcode, .wp-video-shortcode").not(".mejs-container").mediaelementplayer({success:function(e,i){}}),window.console&&console.log&&console.log("rtMedia: WordPress 6.7 compatibility mode active")}));
\ No newline at end of file
diff --git a/app/helper/RTMediaCommentNotification.php b/app/helper/RTMediaCommentNotification.php
index 11a2c4869..4f9f502b8 100644
--- a/app/helper/RTMediaCommentNotification.php
+++ b/app/helper/RTMediaCommentNotification.php
@@ -35,7 +35,7 @@ public function __construct() {
 			$args = array(
 				'component_id'       => 'rt_comment_notifier',
 				'component_slug'     => 'rt_comment',
-				'component_callback' => 'rt_comment_notifications_callback',
+				'component_callback' => array( $this, 'rt_comment_notifications_callback' ),
 				'component_action'   => $this->component_action,
 			);
 
@@ -143,29 +143,28 @@ public function remove_comment_notification( $comment_id ) {
 			BP_Notifications_Notification::delete( array( 'id' => $comment_notification_id ) );
 			delete_comment_meta( $comment_id, 'comment_notification_id' );
 		}
-
 	}
-}
 
-/**
- * This is callback function for rt_like_notifier component dont call this callback method manually
- *
- * @param int    $action action of component for notification.
- * @param int    $post_id ID of a post to notification.
- * @param int    $initiator_id secondary_item_id used in 'bp_notifications_add_notification'.
- * @param int    $total_items number of notification for same component.
- * @param String $format string or array.
- *
- * @return  String/Array formatted notification
- */
-function rt_comment_notifications_callback( $action, $post_id, $initiator_id, $total_items, $format = 'string' ) {
-	$params = array(
-		'action'       => $action,
-		'post_id'      => $post_id,
-		'initiator_id' => $initiator_id,
-		'total_items'  => $total_items,
-		'format'       => $format,
-	);
-
-	return apply_filters( 'rtmedia_comment_notifications', $params );
+	/**
+	 * This is callback function for rt_like_notifier component dont call this callback method manually
+	 *
+	 * @param int    $action action of component for notification.
+	 * @param int    $post_id ID of a post to notification.
+	 * @param int    $initiator_id secondary_item_id used in 'bp_notifications_add_notification'.
+	 * @param int    $total_items number of notification for same component.
+	 * @param String $format string or array.
+	 *
+	 * @return  String/Array formatted notification
+	 */
+	public function rt_comment_notifications_callback( $action, $post_id, $initiator_id, $total_items, $format = 'string' ) {
+		$params = array(
+			'action'       => $action,
+			'post_id'      => $post_id,
+			'initiator_id' => $initiator_id,
+			'total_items'  => $total_items,
+			'format'       => $format,
+		);
+
+		return apply_filters( 'rtmedia_comment_notifications', $params );
+	}
 }
diff --git a/app/helper/RTMediaLikeNotification.php b/app/helper/RTMediaLikeNotification.php
index 9141da3c5..5c3b62842 100644
--- a/app/helper/RTMediaLikeNotification.php
+++ b/app/helper/RTMediaLikeNotification.php
@@ -35,7 +35,7 @@ public function __construct() {
 			$args = array(
 				'component_id'       => 'rt_like_notifier',
 				'component_slug'     => 'rt_like',
-				'component_callback' => 'like_notifications_callback',
+				'component_callback' => array( $this, 'like_notifications_callback' ),
 				'component_action'   => $this->component_action,
 			);
 
@@ -171,27 +171,27 @@ public function fetch_media_like_stats( $media_id ) {
 
 		return $media_likes;
 	}
-}
 
-/**
- * This is callback function for rt_like_notifier component dont call this callback method manually
- *
- * @param int    $action action of component for notification.
- * @param int    $post_id ID of a post to notification.
- * @param int    $initiator_id secondary_item_id used in 'bp_notifications_add_notification'.
- * @param int    $total_items number of notification for same component.
- * @param String $format string or array.
- *
- * @return  String/Array formatted notification
- */
-function like_notifications_callback( $action, $post_id, $initiator_id, $total_items, $format = 'string' ) {
-	$params = array(
-		'action'       => $action,
-		'post_id'      => $post_id,
-		'initiator_id' => $initiator_id,
-		'total_items'  => $total_items,
-		'format'       => $format,
-	);
-
-	return apply_filters( 'rtmedia_like_notifications', $params );
+	/**
+	 * This is callback function for rt_like_notifier component dont call this callback method manually
+	 *
+	 * @param int    $action action of component for notification.
+	 * @param int    $post_id ID of a post to notification.
+	 * @param int    $initiator_id secondary_item_id used in 'bp_notifications_add_notification'.
+	 * @param int    $total_items number of notification for same component.
+	 * @param String $format string or array.
+	 *
+	 * @return  String/Array formatted notification
+	 */
+	public function like_notifications_callback( $action, $post_id, $initiator_id, $total_items, $format = 'string' ) {
+		$params = array(
+			'action'       => $action,
+			'post_id'      => $post_id,
+			'initiator_id' => $initiator_id,
+			'total_items'  => $total_items,
+			'format'       => $format,
+		);
+
+		return apply_filters( 'rtmedia_like_notifications', $params );
+	}
 }
diff --git a/app/helper/RTMediaModel.php b/app/helper/RTMediaModel.php
index cb2a6a68f..48d1cf272 100755
--- a/app/helper/RTMediaModel.php
+++ b/app/helper/RTMediaModel.php
@@ -85,7 +85,7 @@ public function get( $columns, $offset = false, $per_page = false, $order_by = '
 					if ( ! isset( $meta_query['compare'] ) ) {
 						$meta_query['compare'] = '=';
 					}
-					$tbl_alias = esc_sql( chr( $temp ++ ) );
+					$tbl_alias = esc_sql( chr( $temp++ ) );
 					if ( is_multisite() ) {
 						$join .= " LEFT JOIN {$wpdb->base_prefix}{$this->meta_table_name} as {$tbl_alias} ON {$this->table_name}.id = {$tbl_alias}.media_id ";
 					} else {
@@ -98,31 +98,30 @@ public function get( $columns, $offset = false, $per_page = false, $order_by = '
 						$where .= $wpdb->prepare( " AND  {$tbl_alias}.meta_key = %s ", $meta_query['key'] ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 					}
 				}
-			} else {
-				if ( is_array( $colvalue ) ) {
-					if ( ! isset( $colvalue['compare'] ) ) {
-						$compare = 'IN';
-					} else {
-						$compare = $colvalue['compare'];
-					}
+			} elseif ( is_array( $colvalue ) ) {
+				if ( ! isset( $colvalue['compare'] ) ) {
+					$compare = 'IN';
+				} else {
+					$compare = $colvalue['compare'];
+				}
 
 					$tmp_val          = isset( $colvalue['value'] ) ? $colvalue['value'] : $colvalue;
 					$col_val_comapare = ( is_array( $tmp_val ) ) ? implode( "','", esc_sql( $tmp_val ) ) : esc_sql( $tmp_val );
 
-					if ( 'IS NOT' === $compare ) {
-						$col_val_comapare = ! empty( $colvalue['value'] ) ? $colvalue['value'] : $col_val_comapare;
-					}
+				if ( 'IS NOT' === $compare ) {
+					$col_val_comapare = ! empty( $colvalue['value'] ) ? $colvalue['value'] : $col_val_comapare;
+				}
 
 					$compare = esc_sql( $compare );
 					$where  .= " AND {$this->table_name}.{$colname} {$compare} ('{$col_val_comapare}')";
-				} else {
-					$where .= $wpdb->prepare( " AND {$this->table_name}.{$colname} = %s", $colvalue ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-				}
+			} else {
+				$where .= $wpdb->prepare( " AND {$this->table_name}.{$colname} = %s", $colvalue ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+
 			}
 		}
 		$qgroup_by = ' ';
 
-		$allowed_order_columns = array( 'media_id', 'media_title','file_size'); // Define allowed columns.
+		$allowed_order_columns = array( 'media_id', 'media_title', 'file_size' ); // Define allowed columns.
 		list( $order_column, $order_direction ) = explode( ' ', $order_by . ' ' ); // Default to space if no direction provided.
 
 		if ( ! in_array( strtolower( $order_column ), $allowed_order_columns ) || ! in_array(
@@ -459,10 +458,8 @@ public function get_other_album_count( $profile_id, $context = 'profile' ) {
 
 		if ( 'profile' === $context ) {
 			$sql .= $wpdb->prepare( ' AND media_author=%d ', $profile_id );
-		} else {
-			if ( 'group' === $context ) {
+		} elseif ( 'group' === $context ) {
 				$sql .= $wpdb->prepare( ' AND context_id=%d ', $profile_id );
-			}
 		}
 
 		$sql   .= 'limit 100';
@@ -486,7 +483,7 @@ public function get_media_count() {
 		$remaining_music     = 0;
 		$remaining_videos    = 0;
 		$remaining_all_media = 0;
-		$remaining_docs	     = 0;
+		$remaining_docs      = 0;
 
 		// Fetch the remaining media count.
 		if ( class_exists( 'RTMediaNav' ) ) {
@@ -500,12 +497,10 @@ public function get_media_count() {
 					$counts      = $rtmedia_nav_obj->actual_counts( $bp->groups->current_group->id, 'group' );
 					$other_count = $this->get_other_album_count( $bp->groups->current_group->id, 'group' );
 				}
-			} else {
+			} elseif ( function_exists( 'bp_displayed_user_id' ) ) {
 
-				if ( function_exists( 'bp_displayed_user_id' ) ) {
 					$counts      = $rtmedia_nav_obj->actual_counts( bp_displayed_user_id(), 'profile' );
 					$other_count = $this->get_other_album_count( bp_displayed_user_id(), 'profile' );
-				}
 			}
 
 			$remaining_all_media = ( ! empty( $counts['total']['all'] ) ) ? $counts['total']['all'] : 0;
@@ -513,7 +508,7 @@ public function get_media_count() {
 			$remaining_photos    = ( ! empty( $counts['total']['photo'] ) ) ? $counts['total']['photo'] : 0;
 			$remaining_videos    = ( ! empty( $counts['total']['video'] ) ) ? $counts['total']['video'] : 0;
 			$remaining_music     = ( ! empty( $counts['total']['music'] ) ) ? $counts['total']['music'] : 0;
-			$remaining_docs 	= ( ! empty( $counts['total']['document'] ) ) ? $counts['total']['document'] : 0;
+			$remaining_docs      = ( ! empty( $counts['total']['document'] ) ) ? $counts['total']['document'] : 0;
 		}
 
 		$media_counts = array(
diff --git a/app/helper/RTMediaSettings.php b/app/helper/RTMediaSettings.php
index e26a20fb3..c87debb06 100755
--- a/app/helper/RTMediaSettings.php
+++ b/app/helper/RTMediaSettings.php
@@ -20,12 +20,17 @@ class RTMediaSettings {
 		 * @access public
 		 */
 		public function __construct() {
-			// todo: nonce required.
+
 			if ( ! ( defined( 'DOING_AJAX' ) && DOING_AJAX ) ) {
 				add_action( 'admin_init', array( $this, 'settings' ) );
 
-				$rtmedia_option_save = filter_input( INPUT_POST, 'rtmedia-options-save', FILTER_SANITIZE_FULL_SPECIAL_CHARS );
+				$rtmedia_option_save = filter_input( INPUT_POST, 'rtmedia-options-save', FILTER_SANITIZE_FULL_SPECIAL_CHARS ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- Not required since we are only checking if it is a save action.
 				if ( isset( $rtmedia_option_save ) ) {
+
+					if ( ! isset( $_POST ) || ! array_key_exists( 'wp_nonce', $_POST ) || ! wp_verify_nonce( sanitize_text_field( wp_unslash( $_POST['wp_nonce'] ) ), 'rtmedia_settings' ) ) {
+						return;
+					}
+
 					add_action( 'init', array( $this, 'settings' ) );
 				}
 			}
@@ -208,15 +213,16 @@ public function sanitize_before_save_options( $options ) {
 		 * @return void
 		 */
 		public function settings() {
-			// todo: nonce required.
+
 			global $rtmedia, $rtmedia_addon, $rtmedia_save_setting_single;
 			$options          = rtmedia_get_site_option( 'rtmedia-options' );
 			$options          = $this->sanitize_options( $options );
 			$rtmedia->options = $options;
 			// Save Settings first then proceed.
-			$rtmedia_option_save = filter_input( INPUT_POST, 'rtmedia-options-save', FILTER_SANITIZE_FULL_SPECIAL_CHARS );
+			$rtmedia_option_save = filter_input( INPUT_POST, 'rtmedia-options-save', FILTER_SANITIZE_FULL_SPECIAL_CHARS ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- Not required since it is the responsibility of caller function to verify nonce.
 			if ( isset( $rtmedia_option_save ) && current_user_can( 'manage_options' ) ) {
-				$options               = filter_input( INPUT_POST, 'rtmedia-options', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY );
+				// Sanitization not required since it is being sanitized in sanitize_before_save_options function.
+				$options               = filter_input( INPUT_POST, 'rtmedia-options', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- Not required since it is the responsibility of caller function to verify nonce.
 				$options               = $this->sanitize_before_save_options( $options );
 				$options               = apply_filters( 'rtmedia_pro_options_save_settings', $options );
 				$is_rewrite_rule_flush = apply_filters( 'rtmedia_flush_rewrite_rule', false );
@@ -226,7 +232,7 @@ public function settings() {
 					flush_rewrite_rules( false );
 				}
 				$settings_saved = '';
-				$setting_save   = filter_input( INPUT_GET, 'settings-saved', FILTER_SANITIZE_FULL_SPECIAL_CHARS );
+				$setting_save   = filter_input( INPUT_GET, 'settings-saved', FILTER_SANITIZE_FULL_SPECIAL_CHARS ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- Not required since it is the responsibility of caller function to verify nonce.
 				if ( ! isset( $setting_save ) ) {
 					$settings_saved = '&settings-saved=true';
 				}
@@ -282,6 +288,31 @@ public function settings() {
 			}
 		}
 
+		/**
+		 * Deep sanitize post data.
+		 *
+		 * @param array $data Data array.
+		 *
+		 * @return array
+		 */
+		public function rtmedia_deep_sanitize_post( $data ) {
+			$sanitized = array();
+
+			foreach ( $data as $key => $value ) {
+				if ( is_array( $value ) ) {
+					$sanitized[ $key ] = $this->rtmedia_deep_sanitize_post( $value );
+				} elseif ( is_numeric( $value ) ) {
+					$sanitized[ $key ] = absint( $value );
+				} elseif ( false !== filter_var( $value, FILTER_VALIDATE_URL ) ) {
+					$sanitized[ $key ] = esc_url_raw( $value );
+				} else {
+					$sanitized[ $key ] = sanitize_text_field( $value );
+				}
+			}
+
+			return $sanitized;
+		}
+
 		/**
 		 * Show network notices.
 		 *
@@ -405,7 +436,8 @@ public function sanitize( $input ) {
 				rtmedia_update_site_option( 'rtm-settings-saved', esc_html__( 'Settings saved.', 'buddypress-media' ) );
 			}
 
-			do_action( 'rtmedia_sanitize_settings', $_POST, $input ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing
+			$sanitized_post = $this->rtmedia_deep_sanitize_post( $_POST ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- Not required since we are only sanitizing the data.
+			do_action( 'rtmedia_sanitize_settings', $sanitized_post, $input );
 
 			return $input;
 		}
diff --git a/app/helper/RTMediaSupport.php b/app/helper/RTMediaSupport.php
index 5cb902465..7e745cde1 100755
--- a/app/helper/RTMediaSupport.php
+++ b/app/helper/RTMediaSupport.php
@@ -179,7 +179,7 @@ public function render_support( $page = '' ) {
 		 * @return void
 		 */
 		public function service_selector() {
-			// todo: nonce required.
+			// phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- Not required since we are only checking which tab is checked in the settings.
 			$form = filter_input( INPUT_POST, 'form', FILTER_SANITIZE_FULL_SPECIAL_CHARS );
 
 			include RTMEDIA_PATH . 'app/helper/templates/service-sector.php';
@@ -255,10 +255,8 @@ public function rtmedia_scan_template_files( $template_path ) {
 								$rt_to_dir_path  = str_replace( '//', '/', $rt_to_dir_paths );
 								$result[]        = str_replace( ABSPATH . 'wp-content/', '', $rt_to_dir_path );
 							}
-						} else {
-							if ( 'main.php' !== $value ) {
+						} elseif ( 'main.php' !== $value ) {
 								$result[] = $value;
-							}
 						}
 					}
 				}
@@ -411,9 +409,9 @@ public function migration_html( $page = '' ) {
 		 * @return void
 		 */
 		public function get_form( $form = '' ) {
-			// todo: nonce required.
+
 			if ( empty( $form ) ) {
-				$form = filter_input( INPUT_POST, 'form' . FILTER_SANITIZE_FULL_SPECIAL_CHARS );
+				$form = filter_input( INPUT_POST, 'form' . FILTER_SANITIZE_FULL_SPECIAL_CHARS ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- Not required since we are only checking which tab is selected and send the form for it.
 				$form = isset( $form ) ? $form : 'premium_support';
 			}
 			$meta_title = '';
@@ -533,7 +531,14 @@ public function submit_request() {
 			) ) {
 				// delete file after sending it to mail.
 				if ( ! empty( $attachment_file ) ) {
-					unlink( $attachment_file );
+					if ( ! function_exists( 'WP_Filesystem' ) ) {
+						require_once ABSPATH . 'wp-admin/includes/file.php';
+					}
+					global $wp_filesystem;
+					if ( ! $wp_filesystem ) {
+						WP_Filesystem();
+					}
+					$wp_filesystem->delete( $attachment_file );
 				}
 				echo '<div class="rtmedia-success" style="margin:10px 0;">';
 
@@ -630,12 +635,20 @@ public function download_debuginfo_as_text() {
 					echo wp_kses_post( ucwords( str_replace( '_', ' ', $option ) ) . str_repeat( ' ', 50 - strlen( $option ) ) . wp_strip_all_tags( $value ) . PHP_EOL );
 				}
 
-				readfile( 'debuginfo.txt' ); // phpcs:ignore WordPress.WP.AlternativeFunctions.file_system_read_readfile
+				if ( ! function_exists( 'WP_Filesystem' ) ) {
+					require_once ABSPATH . 'wp-admin/includes/file.php';
+				}
+
+				global $wp_filesystem;
+
+				if ( ! $wp_filesystem ) {
+					WP_Filesystem();
+				}
+
+				echo esc_html( $wp_filesystem->get_contents( 'debuginfo.txt' ) );
+
 				exit();
 			}
-
 		}
-
 	}
-
 }
diff --git a/app/helper/db/RTDBUpdate.php b/app/helper/db/RTDBUpdate.php
index 94c2c3bd6..217e89276 100644
--- a/app/helper/db/RTDBUpdate.php
+++ b/app/helper/db/RTDBUpdate.php
@@ -78,13 +78,13 @@ public function __construct( $current_version = false, $plugin_path = false, $sc
 			if ( false !== $schema_path ) {
 				$this->schema_path = $schema_path;
 			} else {
-				$this->schema_path = realpath( dirname( __FILE__ ) . $this->schema_path );
+				$this->schema_path = realpath( __DIR__ . $this->schema_path );
 			}
 
 			if ( false !== $plugin_path ) {
 				$this->plugin_path = $plugin_path;
 			} else {
-				$this->plugin_path = realpath( dirname( __FILE__ ) . $this->plugin_path );
+				$this->plugin_path = realpath( __DIR__ . $this->plugin_path );
 			}
 
 			$this->mu_single_table = $mu_single_table;
@@ -169,17 +169,32 @@ public function do_upgrade() {
 							if ( false !== strpos( $entry, '.schema' ) && file_exists( $path . '/' . $entry ) ) {
 								if ( is_multisite() ) {
 									$table_name = str_replace( '.schema', '', strtolower( $entry ) );
-									$check_res  = $wpdb->get_results( $wpdb->prepare( 'SHOW TABLES LIKE %s', '%rt_' . $table_name ), ARRAY_N );
+
+									// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query is required for custom table.
+									$check_res = $wpdb->get_results( $wpdb->prepare( 'SHOW TABLES LIKE %s', '%rt_' . $table_name ), ARRAY_N );
+
 									if ( $check_res && count( $check_res ) > 0 && is_array( $check_res ) && isset( $check_res[0][0] ) ) {
 										$tb_name    = $check_res[0][0];
 										$table_name = ( ( $this->mu_single_table ) ? $wpdb->base_prefix : $wpdb->prefix ) . 'rt_' . $table_name;
 										if ( $tb_name !== $table_name ) {
-											$alter_sql = 'ALTER TABLE ' . $tb_name . ' RENAME TO ' . $table_name;
-											$wpdb->query( $alter_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+											$alter_sql = "ALTER TABLE `{$tb_name}` RENAME TO `{$table_name}`";
+											$wpdb->query( $alter_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 										}
 									}
 								}
-								$this->create_table( $this->genrate_sql( $entry, file_get_contents( $path . '/' . $entry ) ) ); // phpcs:ignore WordPress.WP.AlternativeFunctions.file_get_contents_file_get_contents
+								if ( ! function_exists( 'WP_Filesystem' ) ) {
+									require_once ABSPATH . 'wp-admin/includes/file.php';
+								}
+
+								global $wp_filesystem;
+
+								if ( ! $wp_filesystem ) {
+									WP_Filesystem();
+								}
+
+								$file_content = $wp_filesystem->get_contents( $path . '/' . $entry );
+
+								$this->create_table( $this->genrate_sql( $entry, $file_content ) );
 							}
 						}
 					}
@@ -206,6 +221,7 @@ public function do_upgrade() {
 		public static function table_exists( $table ) {
 			global $wpdb;
 
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query is required for custom table.
 			if ( 1 === intval( $wpdb->query( $wpdb->prepare( 'SHOW TABLES LIKE %s', $table ) ) ) ) {
 				return true;
 			}
diff --git a/app/helper/rtDimensions.php b/app/helper/rtDimensions.php
index 86ff9e8c2..90c8c7b5a 100755
--- a/app/helper/rtDimensions.php
+++ b/app/helper/rtDimensions.php
@@ -50,7 +50,7 @@ private function get_default_id() {
 	 * @access private
 	 */
 	private function update_default_id() {
-		self::$id_count ++;
+		self::$id_count++;
 	}
 
 	/**
@@ -85,7 +85,7 @@ private function embedd_class( $element, $class = null ) {
 			if ( is_array( $class ) ) {
 				$html .= ' ' . implode( ' ', $class );
 			} else {
-				throw new rtFormsInvalidArgumentsException( 'class [' . $element . ']' );
+				throw new rtFormsInvalidArgumentsException( 'class [' . esc_html( $element ) . ']' );
 			}
 		}
 		$html .= '"';
@@ -192,5 +192,4 @@ public function get_dimensions( $attributes = '' ) {
 	public function display_dimensions( $args = '' ) {
 		echo wp_kses( $this->get_dimensions( $args ), RTMedia::expanded_allowed_tags() );
 	}
-
 }
diff --git a/app/helper/rtForm.php b/app/helper/rtForm.php
index 36fd64067..e417af274 100755
--- a/app/helper/rtForm.php
+++ b/app/helper/rtForm.php
@@ -142,7 +142,7 @@ private function get_default_id( $element ) {
 		 * @param  string $element element.
 		 */
 		private function update_default_id( $element ) {
-			self::$id_counts[ $element ] ++;
+			self::$id_counts[ $element ]++;
 		}
 
 		/**
@@ -179,7 +179,7 @@ private function embedd_class( $element, $class = null ) {
 				if ( is_array( $class ) ) {
 					$html .= ' ' . esc_attr( implode( ' ', $class ) );
 				} else {
-					throw new rtFormInvalidArgumentsException( 'class [' . $element . ']' );
+					throw new rtFormInvalidArgumentsException( 'class [' . esc_html( $element ) . ']' );
 				}
 			}
 			$html .= '" ';
@@ -415,21 +415,15 @@ private function container_enclosed_elements( $element, $attrib, $rtform_options
 
 					if ( 'checked' === $key ) {
 						$attrib['checked'] = esc_attr( $val );
-					} else {
-						if ( 'selected' === $key ) {
+					} elseif ( 'selected' === $key ) {
 							$attrib['selected'] = esc_attr( $val );
-						} else {
-							if ( 'desc' === $key ) {
-								$attrib['desc'] = esc_attr( $val );
-							} else {
-								if ( 'id' === $key ) {
-									$attrib['id'] = esc_attr( $val );
-								} else {
-									$attrib['key']   = $key;
-									$attrib['value'] = esc_attr( $val );
-								}
-							}
-						}
+					} elseif ( 'desc' === $key ) {
+							$attrib['desc'] = esc_attr( $val );
+					} elseif ( 'id' === $key ) {
+							$attrib['id'] = esc_attr( $val );
+					} else {
+						$attrib['key']   = $key;
+						$attrib['value'] = esc_attr( $val );
 					}
 				}
 
@@ -481,18 +475,16 @@ private function container_enclosed_elements( $element, $attrib, $rtform_options
 							$data
 						);
 
-					} else {
-						if ( ( isset( $attrib['switch'] ) && $attrib['switch'] ) || ( isset( $attrib['switch_square'] ) && $attrib['switch_square'] ) ) {
+					} elseif ( ( isset( $attrib['switch'] ) && $attrib['switch'] ) || ( isset( $attrib['switch_square'] ) && $attrib['switch_square'] ) ) {
 
 							$label_class = array( 'switch' );
 
 							$data = $this->enclose_label( $element, $data, $attrib['key'], $label_class );
-							if ( $size > 1 ) {
-								$data = '<div>' . $data . '</div>';
-							}
-						} else {
-							$data = $this->enclose_label( $element, $data, $attrib['key'] );
+						if ( $size > 1 ) {
+							$data = '<div>' . $data . '</div>';
 						}
+					} else {
+						$data = $this->enclose_label( $element, $data, $attrib['key'] );
 					}
 
 					$data .= '';
@@ -542,7 +534,7 @@ private function parse_multiple_options( $element, $attributes ) {
 						'rtForm_options' => $rtform_options,
 					);
 				} else {
-					throw new rtFormInvalidArgumentsException( 'rtForm_options [' . $element . ']' );
+					throw new rtFormInvalidArgumentsException( 'rtForm_options [' . esc_html( $element ) . ']' );
 				}
 			} else {
 				throw new rtFormInvalidArgumentsException( 'attributes' );
diff --git a/app/helper/rtProgress.php b/app/helper/rtProgress.php
index acf713b45..2e847c363 100755
--- a/app/helper/rtProgress.php
+++ b/app/helper/rtProgress.php
@@ -18,7 +18,6 @@ class rtProgress { // phpcs:ignore PEAR.NamingConventions.ValidClassName.StartWi
 	 * @access public
 	 */
 	public function __construct() {
-
 	}
 
 	/**
diff --git a/app/helper/rtUploadAttachment.php b/app/helper/rtUploadAttachment.php
index fc2783cfb..c42f2f01f 100755
--- a/app/helper/rtUploadAttachment.php
+++ b/app/helper/rtUploadAttachment.php
@@ -44,8 +44,18 @@ function rtmedia_admin_upload() {
 					$uploaddir = $wpuploaddir['basedir'] . '/rtMedia/tmp/';
 
 					// If folder is not there, then create it.
-					if ( ! is_dir( $uploaddir ) ) {
-						if ( ! mkdir( $uploaddir, 0777, true ) ) {
+					if ( ! function_exists( 'WP_Filesystem' ) ) {
+						require_once ABSPATH . 'wp-admin/includes/file.php';
+					}
+
+					global $wp_filesystem;
+
+					if ( ! $wp_filesystem ) {
+						WP_Filesystem();
+					}
+
+					if ( ! $wp_filesystem->is_dir( $uploaddir ) ) {
+						if ( ! $wp_filesystem->mkdir( $uploaddir, FS_CHMOD_DIR ) ) {
 							die( 'Failed to create folders...' );
 						}
 					}
@@ -62,38 +72,44 @@ function rtmedia_admin_upload() {
 
 					// Move file to target folder.
 					foreach ( $_FILES as $name => $file ) {
+						$safe_key  = sanitize_key( $name );
+						$safe_name = isset( $file['name'] ) ? sanitize_file_name( $file['name'] ) : '';
+						$file_size = isset( $file['size'] ) ? intval( $file['size'] ) : 0;
+						$tmp_name  = isset( $file['tmp_name'] ) ? $file['tmp_name'] : '';
+						$ext       = pathinfo( $safe_name, PATHINFO_EXTENSION );
 
-						if ( $file['size'] <= 2000000 ) {
-							$ext = pathinfo( basename( $file['name'] ), PATHINFO_EXTENSION );
+						if ( $file_size > 2000000 ) {
+							$size_error = array( 'exceed_size_msg' => esc_html__( 'You can not upload more than 2 MB.', 'buddypress-media' ) );
+							echo wp_json_encode( $size_error );
+							exit();
+						}
 
-							if ( $import_export ) {
+						if ( ! is_uploaded_file( $tmp_name ) ) {
+							$error = true;
+							continue;
+						}
 
-								if ( 'json' === strtolower( $ext ) && move_uploaded_file( $file['tmp_name'], $uploaddir . basename( $file['name'] ) ) ) {
-									$uploaded_file = $uploaddir . $file['name'];
+						if ( $import_export ) {
+							if ( 'json' === strtolower( $ext ) && $wp_filesystem->move( $tmp_name, $uploaddir . $safe_name, true ) ) {
+								$uploaded_file = $uploaddir . $safe_name;
+								$rtadmin       = new RTMediaAdmin();
 
-									$rtadmin = new RTMediaAdmin();
-									$rtadmin->import_settings( $uploaded_file );
-								} else {
-									$error = true;
-								}
-							} elseif ( in_array( strtolower( $ext ), $allowed_type, true ) && move_uploaded_file( $file['tmp_name'], $uploaddir . basename( $file['name'] ) ) ) {
-								$files[] = $uploaddir . $file['name'];
+								$rtadmin->import_settings( $uploaded_file );
 							} else {
 								$error = true;
 							}
+						} elseif ( in_array( strtolower( $ext ), $allowed_type, true ) && $wp_filesystem->move( $tmp_name, $uploaddir . $safe_name, true ) ) {
+							$files[] = $uploaddir . $safe_name;
 						} else {
-							$size_error = array( 'exceed_size_msg' => esc_html__( 'You can not upload more than 2 MB.', 'buddypress-media' ) );
-							echo wp_json_encode( $size_error );
-							exit();
+							$error = true;
 						}
 					}
 
 					$data = ( $error ) ? array( 'error' => esc_html__( 'There was an error uploading your files', 'buddypress-media' ) ) : array( 'debug_attachmanet' => $files );
-
 				} else {
 					$data = array(
 						'success'  => esc_html__( 'Form was submitted', 'buddypress-media' ),
-						'formData' => $_POST,
+						'formData' => rtmedia_deep_sanitize_post( $_POST ),
 					);
 				}
 
@@ -103,4 +119,29 @@ function rtmedia_admin_upload() {
 			}
 		}
 	}
-}
+
+	/**
+	 * Deep sanitize post data.
+	 *
+	 * @param array $data Data array.
+	 *
+	 * @return array
+	 */
+	function rtmedia_deep_sanitize_post( $data ) {
+		$sanitized = array();
+
+		foreach ( $data as $key => $value ) {
+			if ( is_array( $value ) ) {
+				$sanitized[ $key ] = rtmedia_deep_sanitize_post( $value );
+			} elseif ( is_numeric( $value ) ) {
+				$sanitized[ $key ] = absint( $value );
+			} elseif ( false !== filter_var( $value, FILTER_VALIDATE_URL ) ) {
+				$sanitized[ $key ] = esc_url_raw( $value );
+			} else {
+				$sanitized[ $key ] = sanitize_text_field( $value );
+			}
+		}
+
+		return $sanitized;
+	}
+}
\ No newline at end of file
diff --git a/app/importers/BPMediaAlbumimporter.php b/app/importers/BPMediaAlbumimporter.php
index 95b06867c..5e251a0b5 100755
--- a/app/importers/BPMediaAlbumimporter.php
+++ b/app/importers/BPMediaAlbumimporter.php
@@ -35,7 +35,9 @@ public function update_table() {
 		}
 		global $wpdb;
 
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query is required for custom table.
 		return $wpdb->query(
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.SchemaChange
 			"ALTER TABLE {$wpdb->base_prefix}bp_album
                             ADD COLUMN import_status BIGINT (20) NOT NULL DEFAULT 0,
                             ADD COLUMN old_activity_id BIGINT (20) NOT NULL DEFAULT 0,
@@ -54,6 +56,8 @@ public function update_table() {
 	public function column_exists( $column ) {
 		global $wpdb;
 
+		// Direct query is required for custom table. safe because SQL is prepared.
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
 		return $wpdb->query( $wpdb->prepare( "SHOW COLUMNS FROM {$wpdb->base_prefix}bp_album LIKE %s limit 1", $column ) );
 	}
 
@@ -217,12 +221,12 @@ public function ui() {
 	/**
 	 * Create album.
 	 *
-	 * @param string $author_id Author id.
 	 * @param string $album_name Album name.
+	 * @param string $author_id Author id.
 	 *
 	 * @return mixed
 	 */
-	public function create_album( $album_name = '', $author_id = 1 )  {
+	public function create_album( $album_name = '', $author_id = 1 ) {
 		global $bp_media, $wpdb;
 
 		// Set album_name to 'Imported Media' if it is empty.
@@ -236,6 +240,8 @@ public function create_album( $album_name = '', $author_id = 1 )  {
 			}
 		}
 
+		// Direct query is required for because core function may return invalid result due to caching.
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
 		$result = $wpdb->get_results( $wpdb->prepare( "SELECT ID from $wpdb->posts WHERE post_type='bp_media_album' AND post_status = 'publish' AND post_author = %d AND post_title LIKE %s limit 1", $author_id, $album_name ) );
 		if ( count( $result ) < 1 ) {
 			$album = new BPMediaAlbum();
@@ -244,6 +250,7 @@ public function create_album( $album_name = '', $author_id = 1 )  {
 		} else {
 			$album_id = $result[0]->ID;
 		}
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 		$wpdb->update( $wpdb->base_prefix . 'bp_activity', array( 'secondary_item_id' => - 999 ), array( 'id' => get_post_meta( $album_id, 'bp_media_child_activity', true ) ) );
 
 		return $album_id;
@@ -258,6 +265,7 @@ public static function get_total_count() {
 		global $wpdb;
 		$table = $wpdb->base_prefix . 'bp_album';
 		if ( self::table_exists( $table ) ) {
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
 			return $wpdb->get_results( "SELECT COUNT(DISTINCT owner_id) as users, COUNT(id) as media FROM {$table}" );
 		}
 
@@ -274,8 +282,9 @@ public function get_remaining_comments() {
 		$bp_album_table = $wpdb->base_prefix . 'bp_album';
 		$activity_table = $wpdb->base_prefix . 'bp_activity';
 		if ( $this->table_exists( $bp_album_table ) ) {
-			// phpcs:disable WordPress.DB.PreparedSQL.NotPrepared
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 			return $wpdb->get_var(
+				// phpcs:disable WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 				"SELECT SUM( b.count ) AS total
                                         FROM (
                                             SELECT (
@@ -285,15 +294,15 @@ public function get_remaining_comments() {
                                                 AND a.component =  'activity'
                                                 AND a.type =  'activity_comment'
                                             ) AS count
-                                            FROM $activity_table AS activity
-                                            INNER JOIN $bp_album_table AS album ON ( album.id = activity.item_id )
+                                            FROM {$activity_table} AS activity
+                                            INNER JOIN {$bp_album_table} AS album ON ( album.id = activity.item_id )
                                             WHERE activity.component =  'album'
                                             AND activity.type =  'bp_album_picture'
                                             AND album.import_status =0
                                         )b"
-			); // phpcs:enable WordPress.DB.PreparedSQL.NotPrepared WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+				// phpcs:enable WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+			);
 		}
-
 		return 0;
 	}
 
@@ -307,6 +316,8 @@ public function get_finished_comments() {
 		$bp_album_table = $wpdb->base_prefix . 'bp_album';
 
 		if ( $this->table_exists( $bp_album_table ) ) {
+			// Direct query is required for custom table.
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.DirectDatabaseQuery.SchemaChange
 			return $wpdb->get_var(
 				"SELECT COUNT( activity.id ) AS count
                         FROM {$wpdb->base_prefix}bp_activity AS activity
@@ -329,6 +340,8 @@ public static function get_completed_users() {
 		$table = $wpdb->base_prefix . 'bp_album';
 		if ( self::table_exists( $table ) ) {
 
+			// Direct query is required for custom table.
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
 			return $wpdb->get_results(
 				"SELECT COUNT( DISTINCT owner_id ) AS users
                     FROM {$wpdb->base_prefix}bp_album
@@ -354,6 +367,8 @@ public static function get_completed_media() {
 		global $wpdb;
 		$table = $wpdb->base_prefix . 'bp_album';
 		if ( self::table_exists( $table ) ) {
+			// Direct query is required for custom table.
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
 			return $wpdb->get_results( "SELECT COUNT(id) as media FROM {$wpdb->base_prefix}bp_album WHERE import_status!=0" );
 		}
 
@@ -369,6 +384,8 @@ public static function get_corrupt_media() {
 		global $wpdb;
 		$table = $wpdb->base_prefix . 'bp_album';
 		if ( self::table_exists( $table ) ) {
+			// Direct query is required for custom table.
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
 			return $wpdb->get_results( "SELECT id,title,pic_org_url FROM {$wpdb->base_prefix}bp_album WHERE import_status=-1" );
 		}
 
@@ -387,6 +404,8 @@ public static function batch_import( $count = 5 ) {
 
 		$table = $wpdb->base_prefix . 'bp_album';
 		if ( self::table_exists( $table ) ) {
+			// Direct query is required for custom table.
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching 
 			$bp_album_data = $wpdb->get_results( $wpdb->prepare( "SELECT * FROM {$wpdb->base_prefix}bp_album WHERE import_status = 0 ORDER BY owner_id LIMIT %d", $count ) );
 			return $bp_album_data;
 		}
@@ -426,15 +445,52 @@ public static function bpmedia_ajax_import_callback() {
 			$bpm_host_wp->check_and_create_album( 0, 0, $bp_album_item->owner_id );
 			$album_id          = self::create_album( $bp_album_item->owner_id, 'Imported Media' );
 			$imported_media_id = BPMediaImporter::add_media( $album_id, $bp_album_item->title, $bp_album_item->description, $bp_album_item->pic_org_path, $bp_album_item->privacy, $bp_album_item->owner_id, 'Imported Media' );
+
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 			$wpdb->update( $table, array( 'import_status' => ( $imported_media_id ) ? $imported_media_id : - 1 ), array( 'id' => $bp_album_item->id ), array( '%d' ), array( '%d' ) );
+
 			if ( $imported_media_id ) {
 				$comments += (int) self::update_recorded_time_and_comments( $imported_media_id, $bp_album_item->id, "{$wpdb->base_prefix}bp_album" );
 
-				$bp_album_media_id = $wpdb->get_var( "SELECT activity.id from $activity_table as activity INNER JOIN $table as album ON ( activity.item_id = album.id ) WHERE activity.item_id = $bp_album_item->id AND activity.component = 'album' AND activity.type='bp_album_picture'" );
-				$wpdb->update( $table, array( 'old_activity_id' => $bp_album_media_id ), array( 'id' => $bp_album_item->id ), array( '%d' ), array( '%d' ) );
-				$bp_new_activity_id = $wpdb->get_var( "SELECT id from $activity_table WHERE item_id = $imported_media_id AND component = 'activity' AND type='activity_update' AND secondary_item_id=0" );
-				$wpdb->update( $table, array( 'new_activity_id' => $bp_new_activity_id ), array( 'id' => $bp_album_item->id ), array( '%d' ), array( '%d' ) );
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+				$bp_album_media_id = $wpdb->get_var(
+					$wpdb->prepare(
+						"SELECT activity.id FROM {$activity_table} AS activity INNER JOIN {$table} AS album ON ( activity.item_id = album.id ) WHERE activity.item_id = %d AND activity.component = %s AND activity.type = %s", // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+						$bp_album_item->id,
+						'album',
+						'bp_album_picture'
+					)
+				);
+
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+				$wpdb->update(
+					$table,
+					array( 'old_activity_id' => $bp_album_media_id ),
+					array( 'id' => $bp_album_item->id ),
+					array( '%d' ),
+					array( '%d' )
+				);
+
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+				$bp_new_activity_id = $wpdb->get_var(
+					$wpdb->prepare(
+						"SELECT id FROM {$activity_table} WHERE item_id = %d AND component = %s AND type = %s AND secondary_item_id = 0", // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+						$imported_media_id,
+						'activity',
+						'activity_update'
+					)
+				);
+
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+				$wpdb->update(
+					$table,
+					array( 'new_activity_id' => $bp_new_activity_id ),
+					array( 'id' => $bp_album_item->id ),
+					array( '%d' ),
+					array( '%d' )
+				);
 
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 				if ( $wpdb->update(
 					$activity_meta_table,
 					array( 'activity_id' => $bp_new_activity_id ),
@@ -479,7 +535,7 @@ public static function bpmedia_ajax_import_favorites() {
 
 		echo wp_json_encode(
 			array(
-				'favorites' => $wpdb->get_var( "SELECT COUNT(id) from $table WHERE favorites != 0" ), // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+				'favorites' => $wpdb->get_var( "SELECT COUNT(id) from $table WHERE favorites != 0" ), // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
 				'users'     => $users['total_users'],
 				'offset'    => (int) get_site_option( 'bp_media_bp_album_favorite_import_status', 0 ),
 			)
@@ -522,7 +578,8 @@ public static function bpmedia_ajax_import_step_favorites() {
 
 					$new_favorite_activities = $favorite_activities;
 					foreach ( $favorite_activities as $key => $favorite ) {
-						$new_act = $wpdb->get_var( $wpdb->prepare( "SELECT new_activity_id from $table WHERE old_activity_id = %d limit 1", $favorite ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+						// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+						$new_act = $wpdb->get_var( $wpdb->prepare( "SELECT new_activity_id from {$table} WHERE old_activity_id = %d limit 1", $favorite ) );
 						if ( ! empty( $new_act ) ) {
 							$new_favorite_activities[ $key ] = $new_act;
 						}
@@ -578,19 +635,25 @@ public static function update_recorded_time_and_comments( $media, $bp_album_id,
 			$comments    = 0;
 
 			if ( $activity_id ) {
-				$date_uploaded   = $wpdb->get_var( $wpdb->prepare( "SELECT date_uploaded from $table WHERE id = %d", $bp_album_id ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+				$date_uploaded   = $wpdb->get_var( $wpdb->prepare( "SELECT date_uploaded from {$table} WHERE id = %d", $bp_album_id ) );
+
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
 				$old_activity_id = $wpdb->get_var( $wpdb->prepare( "SELECT id from {$wpdb->base_prefix}bp_activity WHERE component = 'album' AND type = 'bp_album_picture' AND item_id = %d", $bp_album_id ) );
 				if ( $old_activity_id ) {
+					// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 					$comments = $wpdb->get_results( $wpdb->prepare( "SELECT id,secondary_item_id from {$wpdb->base_prefix}bp_activity WHERE component = 'activity' AND type = 'activity_comment' AND item_id = %d", $old_activity_id ) );
 					foreach ( $comments as $comment ) {
 						$update = array( 'item_id' => $activity_id );
 						if ( $comment->secondary_item_id === $old_activity_id ) {
 							$update['secondary_item_id'] = $activity_id;
 						}
+						// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Update date recorded in custom table.
 						$wpdb->update( $wpdb->base_prefix . 'bp_activity', $update, array( 'id' => $comment->id ) );
 						BP_Activity_Activity::rebuild_activity_comment_tree( $activity_id );
 					}
 				}
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Update date recorded in custom table.
 				$wpdb->update( $wpdb->base_prefix . 'bp_activity', array( 'date_recorded' => $date_uploaded ), array( 'id' => $activity_id ) );
 
 				return count( $comments );
diff --git a/app/importers/BPMediaImporter.php b/app/importers/BPMediaImporter.php
index e79f88fbb..cd677ccf0 100755
--- a/app/importers/BPMediaImporter.php
+++ b/app/importers/BPMediaImporter.php
@@ -30,7 +30,6 @@ class BPMediaImporter {
 	 * BPMediaImporter constructor.
 	 */
 	public function __construct() {
-
 	}
 
 	/**
@@ -43,6 +42,7 @@ public function __construct() {
 	public static function table_exists( $table ) {
 		global $wpdb;
 
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 		if ( 1 === intval( $wpdb->query( $wpdb->prepare( 'SHOW TABLES LIKE %s', $table ) ) ) ) {
 			return true;
 		}
@@ -111,7 +111,14 @@ public static function make_copy( $filepath ) {
 		}
 
 		if ( file_exists( $filepath ) ) {
-			if ( copy( $filepath, $newpath ) ) {
+			if ( ! function_exists( 'WP_Filesystem' ) ) {
+				require_once ABSPATH . 'wp-admin/includes/file.php';
+			}
+			global $wp_filesystem;
+			if ( ! $wp_filesystem ) {
+				WP_Filesystem();
+			}
+			if ( $wp_filesystem->copy( $filepath, $newpath, true ) ) {
 				return self::file_array( $newpath );
 			}
 		}
@@ -198,7 +205,10 @@ public static function add_media( $album_id, $title = '', $description = '', $fi
 	 */
 	public static function cleanup( $table, $directory ) {
 		global $wpdb;
-		$wpdb->query( "DROP TABLE IF EXISTS $table" ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		$table = esc_sql( $table );
+		$sql = "DROP TABLE IF EXISTS `{$table}`";
+		$wpdb->query( $sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.SchemaChange, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 		$wpdb->query( $wpdb->prepare( "DELETE FROM {$wpdb->base_prefix}bp_activity WHERE component = %s", 'album' ) );
 		if ( is_dir( $directory ) ) {
 			self::delete( $directory );
@@ -213,6 +223,16 @@ public static function cleanup( $table, $directory ) {
 	 * @return bool
 	 */
 	public static function delete( $path ) {
+		global $wp_filesystem;
+
+		if ( ! function_exists( 'WP_Filesystem' ) ) {
+			require_once ABSPATH . 'wp-admin/includes/file.php';
+		}
+
+		if ( ! $wp_filesystem ) {
+			WP_Filesystem();
+		}
+
 		if ( true === is_dir( $path ) ) {
 			$files = array_diff( scandir( $path ), array( '.', '..' ) );
 
@@ -220,11 +240,9 @@ public static function delete( $path ) {
 				self::delete( realpath( $path ) . '/' . $file );
 			}
 
-			return rmdir( $path );
-		} else {
-			if ( true === is_file( $path ) ) {
-				return unlink( $path );
-			}
+			return $wp_filesystem->rmdir( $path );
+		} elseif ( true === is_file( $path ) ) {
+				return $wp_filesystem->delete( $path );
 		}
 
 		return false;
diff --git a/app/importers/RTMediaActivityUpgrade.php b/app/importers/RTMediaActivityUpgrade.php
index f2cc0efa9..fb378b074 100644
--- a/app/importers/RTMediaActivityUpgrade.php
+++ b/app/importers/RTMediaActivityUpgrade.php
@@ -105,15 +105,16 @@ public function rtmedia_activity_upgrade( $lastid = 0, $limit = 1 ) {
 		if ( check_ajax_referer( 'rtmedia_media_activity_upgrade_nonce', 'nonce' ) ) {
 			$rtmedia_model          = new RTMediaModel();
 			$rtmedia_activity_model = new RTMediaActivityModel();
-			$activity_sql           = $wpdb->prepare( " SELECT *, max(privacy) as max_privacy FROM {$rtmedia_model->table_name} WHERE activity_id is NOT NULL GROUP BY activity_id ORDER BY id limit %d", $limit ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+			$activity_sql           = $wpdb->prepare( "SELECT *, max(privacy) as max_privacy FROM {$rtmedia_model->table_name} WHERE activity_id is NOT NULL GROUP BY activity_id ORDER BY id limit %d", $limit ); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 
 			$lastid = filter_input( INPUT_POST, 'last_id', FILTER_SANITIZE_NUMBER_INT );
 
 			if ( ! empty( $lastid ) ) {
-				$activity_sql = $wpdb->prepare( " SELECT *, max(privacy) as max_privacy FROM {$rtmedia_model->table_name} WHERE activity_id > %d AND activity_id is NOT NULL GROUP BY activity_id ORDER BY id limit %d", $lastid, $limit ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+				$activity_sql = $wpdb->prepare( "SELECT *, max(privacy) as max_privacy FROM {$rtmedia_model->table_name} WHERE activity_id > %d AND activity_id is NOT NULL GROUP BY activity_id ORDER BY id limit %d", $lastid, $limit ); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 			}
 
-			$activity_data = $wpdb->get_results( $activity_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query is required for custom table.
+			$activity_data = $wpdb->get_results( $activity_sql );
 
 			if ( is_array( $activity_data ) && ! empty( $activity_data ) ) {
 				if ( $rtmedia_activity_model->check( $activity_data[0]->activity_id ) ) {
@@ -140,7 +141,6 @@ public function rtmedia_activity_upgrade( $lastid = 0, $limit = 1 ) {
 			echo '0';
 			wp_die();
 		}
-
 	}
 
 	/**
@@ -207,14 +207,15 @@ public function get_pending_count( $activity_id = false ) {
 		global $wpdb;
 		$rtmedia_activity_model = new RTMediaActivityModel();
 		$rtmedia_model          = new RTMediaModel();
-		$query_pending          = $wpdb->prepare( " SELECT count( DISTINCT activity_id) as pending from {$rtmedia_model->table_name} where activity_id NOT IN( SELECT activity_id from {$rtmedia_activity_model->table_name} ) AND activity_id > %d  ", 0 ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		$query_pending          = $wpdb->prepare( "SELECT count( DISTINCT activity_id) as pending from {$rtmedia_model->table_name} where activity_id NOT IN( SELECT activity_id from {$rtmedia_activity_model->table_name} ) AND activity_id > %d", 0 ); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 		$last_imported          = $this->get_last_imported();
 
 		if ( $last_imported ) {
 			$query_pending .= $wpdb->prepare( ' AND activity_id > %d', intval( $last_imported ) );
 		}
 
-		$pending_count = $wpdb->get_results( $query_pending ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query is required for custom table.
+		$pending_count = $wpdb->get_results( $query_pending );
 
 		if ( $pending_count && count( $pending_count ) > 0 ) {
 			return $pending_count[0]->pending;
@@ -231,7 +232,8 @@ public function get_pending_count( $activity_id = false ) {
 	public function get_total_count() {
 		global $wpdb;
 		$rtmedia_model = new RTMediaModel();
-		$total_count   = $wpdb->get_results( $wpdb->prepare( " SELECT count( DISTINCT activity_id) as total FROM {$rtmedia_model->table_name} WHERE activity_id > %d ", 0 ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+		$total_count   = $wpdb->get_results( $wpdb->prepare( "SELECT count( DISTINCT activity_id) as total FROM {$rtmedia_model->table_name} WHERE activity_id > %d", 0 ) );
 
 		if ( $total_count && count( $total_count ) > 0 ) {
 			return $total_count[0]->total;
@@ -248,7 +250,8 @@ public function get_total_count() {
 	public function get_last_imported() {
 		global $wpdb;
 		$rtmedia_activity_model = new RTMediaActivityModel();
-		$last_imported          = $wpdb->get_results( $wpdb->prepare( " SELECT activity_id from {$rtmedia_activity_model->table_name} ORDER BY activity_id DESC limit %d ", 1 ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+		$last_imported          = $wpdb->get_results( $wpdb->prepare( "SELECT activity_id from {$rtmedia_activity_model->table_name} ORDER BY activity_id DESC limit %d", 1 ) );
 
 		if ( $last_imported && count( $last_imported ) > 0 && isset( $last_imported[0] ) && isset( $last_imported[0]->activity_id ) ) {
 			return $last_imported[0]->activity_id;
diff --git a/app/importers/RTMediaMediaSizeImporter.php b/app/importers/RTMediaMediaSizeImporter.php
index 961f22242..eb5ccf0ae 100644
--- a/app/importers/RTMediaMediaSizeImporter.php
+++ b/app/importers/RTMediaMediaSizeImporter.php
@@ -104,7 +104,7 @@ public function add_rtmedia_media_size_import_notice() {
 		if ( current_user_can( 'manage_options' ) ) {
 			$this->create_notice(
 				sprintf(
-					'<p><strong>rtMedia</strong>: %1$s <a href="%2$s">%3$s</a> %4$s. <a href="#" onclick="rtmedia_hide_media_size_import_notice()" style="float: right;">%5$s</a></p>',
+					'<p><strong>rtMedia</strong>: %1$s <a href="%2$s">%3$s</a> %4$s. <a href="#" id="rtmedia_hide_media_size_import_notice" style="float: right;">%5$s</a></p>',
 					esc_html__( ': Database table structure for rtMedia has been updated. Please', 'buddypress-media' ),
 					esc_url( admin_url( 'admin.php?page=rtmedia-migration-media-size-import&force=true' ) ),
 					esc_html__( 'Click Here', 'buddypress-media' ),
@@ -112,19 +112,6 @@ public function add_rtmedia_media_size_import_notice() {
 					esc_html__( 'Hide', 'buddypress-media' )
 				)
 			);
-
-			?>
-			<script type="text/javascript">
-				function rtmedia_hide_media_size_import_notice() {
-					var data = {action: 'rtmedia_hide_media_size_import_notice'};
-					jQuery.post(ajaxurl, data, function (response) {
-						response = response.trim();
-						if (response === '1')
-							jQuery('.rtmedia-media-size-import-error').remove();
-					});
-				}
-			</script>
-			<?php
 		}
 	}
 
@@ -142,6 +129,7 @@ public function create_notice( $message, $type = 'error' ) {
 				'href'    => array(),
 				'onclick' => array(),
 				'style'   => array(),
+				'id'      => array(),
 			),
 			'strong' => array(),
 		);
@@ -179,10 +167,12 @@ public function get_pending_count( $media_id = false ) {
 
 		if ( $media_id ) {
 			$media_id      = intval( $media_id );
-			$query_pending = $wpdb->prepare( "SELECT COUNT(*) as pending from {$rtmedia_model->table_name} where file_size IS NULL AND media_type in ('photo','video','document','music','other') AND id > %d", $media_id );
+			$query_pending = $wpdb->prepare( "SELECT COUNT(*) as pending from {$rtmedia_model->table_name} where file_size IS NULL AND media_type in ('photo','video','document','music','other') AND id > %d", $media_id ); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 		}
 
-		$pending_count = $wpdb->get_results( $query_pending ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		// Direct query is required for custom table. safe because SQL is prepared.
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		$pending_count = $wpdb->get_results( $query_pending );
 		if ( $pending_count && count( $pending_count ) > 0 ) {
 			return $pending_count[0]->pending;
 		}
@@ -198,8 +188,10 @@ public function get_pending_count( $media_id = false ) {
 	public function get_total_count() {
 		global $wpdb;
 		$rtmedia_model = new RTMediaModel();
-		$query_total   = "SELECT COUNT(*) as total from {$rtmedia_model->table_name} where media_type in ('photo','video','document','music','other') ";
-		$total_count   = $wpdb->get_results( $query_total ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		$query_total   = "SELECT COUNT(*) as total from {$rtmedia_model->table_name} where media_type in ('photo','video','document','music','other') "; // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		// Direct query is required for custom table.
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared
+		$total_count   = $wpdb->get_results( $query_total );
 
 		if ( $total_count && count( $total_count ) > 0 ) {
 			return $total_count[0]->total;
@@ -218,12 +210,14 @@ public function rtmedia_media_size_import( $lastid = 0, $limit = 1 ) {
 		global $wpdb;
 		if ( check_ajax_referer( 'rtmedia_media_size_import_nonce', 'nonce' ) ) {
 			$rtmedia_model = new RTMediaModel();
-			$get_media_sql = $wpdb->prepare( "SELECT * from {$rtmedia_model->table_name} where file_size is NULL and media_type in ('photo','video','document','music','other') order by id limit %d", $limit );
+			$get_media_sql = $wpdb->prepare( "SELECT * from {$rtmedia_model->table_name} where file_size is NULL and media_type in ('photo','video','document','music','other') order by id limit %d", $limit ); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 			$lastid        = filter_input( INPUT_POST, 'last_id', FILTER_SANITIZE_NUMBER_INT );
 			if ( ! empty( $lastid ) ) {
-				$get_media_sql = $wpdb->prepare( "SELECT * from {$rtmedia_model->table_name} where id > %d AND file_size is NULL and media_type in ('photo','video','document','music','other') order by id limit %d", $lastid, $limit );
+				$get_media_sql = $wpdb->prepare( "SELECT * from {$rtmedia_model->table_name} where id > %d AND file_size is NULL and media_type in ('photo','video','document','music','other') order by id limit %d", $lastid, $limit ); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 			}
-			$result = $wpdb->get_results( $get_media_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+			// Direct query is required for custom table. safe because SQL is prepared.
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared
+			$result = $wpdb->get_results( $get_media_sql );
 			if ( $result && count( $result ) > 0 ) {
 				$migrate = $this->migrate_single_media( $result[0] );
 			}
diff --git a/app/importers/RTMediaMigration.php b/app/importers/RTMediaMigration.php
index b80c1770e..ca27dc0e7 100755
--- a/app/importers/RTMediaMigration.php
+++ b/app/importers/RTMediaMigration.php
@@ -78,6 +78,7 @@ public function migrate_image_size_fix() {
 		if ( '' === rtmedia_get_site_option( 'rt_image_size_migration_fix', '' ) ) {
 			global $wpdb;
 
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 			$wpdb->get_row( $wpdb->prepare( "update $wpdb->postmeta set meta_value=replace(meta_value	,%s,%s) where meta_key = '_wp_attachment_metadata';", 'bp_media', 'rt_media' ) );
 
 			update_option( 'rt_image_size_migration_fix', 'fix' );
@@ -125,6 +126,7 @@ public function create_notice( $message, $type = 'error' ) {
 	public static function table_exists( $table ) {
 		global $wpdb;
 
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 		if ( 1 === intval( $wpdb->query( $wpdb->prepare( 'SHOW TABLES LIKE %s', $table ) ) ) ) {
 			return true;
 		}
@@ -163,13 +165,19 @@ public function get_total_count() {
 		}
 		$sql_album_usercount = "select count(*) FROM $wpdb->usermeta where meta_key ='bp-media-default-album' ";
 
-		$_SESSION['migration_user_album'] = $wpdb->get_var( $sql_album_usercount ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-		$count                            = intval( $_SESSION['migration_user_album'] );
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+		$_SESSION['migration_user_album'] = $wpdb->get_var( $sql_album_usercount );
+		if ( ! empty( $_SESSION['migration_user_album'] ) ) {
+			$count = intval( isset( $_SESSION['migration_user_album'] ) ? $_SESSION['migration_user_album'] : 0 );
+		}
 
 		if ( $this->table_exists( $bp_prefix . 'bp_groups_groupmeta' ) ) {
 			$sql_album_groupcount              = $wpdb->prepare( "select count(*) FROM {$bp_prefix}bp_groups_groupmeta where meta_key =%s", 'bp_media_default_album' ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-			$_SESSION['migration_group_album'] = $wpdb->get_var( $sql_album_groupcount ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-			$count                            += intval( $_SESSION['migration_group_album'] );
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+			$_SESSION['migration_group_album'] = $wpdb->get_var( $sql_album_groupcount );
+			if ( ! empty( $_SESSION['migration_group_album'] ) ) {
+				$count += intval( $_SESSION['migration_group_album'] );
+			}
 		}
 
 		if ( $this->table_exists( $bp_prefix . 'bp_activity' ) ) {
@@ -191,8 +199,10 @@ public function get_total_count() {
                                                     and is_spam <>1 and
                                                         not p.meta_value is NULL";
 
-			$_SESSION['migration_activity'] = $wpdb->get_var( $sql_bpm_comment_count ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-			$count                         += intval( $_SESSION['migration_activity'] );
+			$_SESSION['migration_activity'] = $wpdb->get_var( $sql_bpm_comment_count ); // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+			if ( ! empty( $_SESSION['migration_activity'] ) ) {
+				$count += intval( $_SESSION['migration_activity'] );
+			}
 		}
 
 		$sql = "select count(*)
@@ -210,8 +220,11 @@ public function get_total_count() {
                     a.post_id > 0 and  (NOT p.ID IS NULL)
                         and a.meta_key = 'bp-media-key'";
 
-		$_SESSION['migration_media'] = $wpdb->get_var( $sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-		$count                      += intval( $_SESSION['migration_media'] );
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+		$_SESSION['migration_media'] = $wpdb->get_var( $sql );
+		if ( ! empty( $_SESSION['migration_media'] ) ) {
+			$count += intval( $_SESSION['migration_media'] );
+		}
 
 		return $count;
 	}
@@ -226,15 +239,20 @@ public function get_last_imported() {
 		$album_id = $album[0];
 
 		global $wpdb;
-		$sql = "select a.post_ID
-                from
-                    {$wpdb->postmeta} a  left join
-                    {$wpdb->posts} p ON (a.post_id = p.ID)
-                where
-                     a.meta_key = 'bp-media-key' and  (NOT p.ID IS NULL) and a.post_id not in (select media_id
-                from {$this->bmp_table} where blog_id = %d and media_id <> %d ) order by a.post_ID";
-		$sql = $wpdb->prepare( $sql, get_current_blog_id(), $album_id ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-		$row = $wpdb->get_row( $sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+
+		// phpcs:disable WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		$sql = $wpdb->prepare(
+			"SELECT a.post_ID FROM
+			{$wpdb->postmeta} a LEFT JOIN
+			{$wpdb->posts} p ON (a.post_id = p.ID)
+            WHERE
+                a.meta_key = 'bp-media-key' AND  (NOT p.ID IS NULL) AND a.post_id NOT IN (SELECT media_id
+            FROM {$this->bmp_table} WHERE blog_id = %d AND media_id <> %d ) ORDER BY a.post_ID",
+			get_current_blog_id(),
+			$album_id
+		); // phpcs:enable WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query is required for custom table.
+		$row = $wpdb->get_row( $sql );
 		if ( $row ) {
 			return $row->post_ID;
 		} else {
@@ -267,7 +285,8 @@ public function get_done_count( $flag = false ) {
                     a.post_id > 0 and  (NOT p.ID IS NULL)
                         and a.meta_key = 'bp-media-key')";
 
-		$media_count = $wpdb->get_var( $wpdb->prepare( $sql, get_current_blog_id() ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+		$media_count = $wpdb->get_var( $wpdb->prepare( $sql, get_current_blog_id() ) );
 
 		if ( $flag ) {
 			return $media_count - 1;
@@ -275,7 +294,7 @@ public function get_done_count( $flag = false ) {
 
 		$state = intval( rtmedia_get_site_option( 'rtmedia-migration', '0' ) );
 
-		if ( 5 === $state ) {
+		if ( 5 === $state && isset( $_SESSION['migration_user_album'] ) ) {
 			$album_count  = intval( $_SESSION['migration_user_album'] );
 			$album_count += ( isset( $_SESSION['migration_group_album'] ) ) ? intval( $_SESSION['migration_group_album'] ) : 0;
 		} elseif ( $state > 0 ) {
@@ -291,7 +310,8 @@ public function get_done_count( $flag = false ) {
 				$pending_count .= " or ID in (select meta_value FROM {$bp_prefix}bp_groups_groupmeta where meta_key ='bp_media_default_album')";
 			}
 				$pending_count .= ')';
-				$pending_count  = $wpdb->get_var( $pending_count ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+				$pending_count  = $wpdb->get_var( $pending_count );
 
 				$album_count  = intval( $_SESSION['migration_user_album'] );
 				$album_count += ( isset( $_SESSION['migration_group_album'] ) ) ? intval( $_SESSION['migration_group_album'] ) : 0;
@@ -300,15 +320,22 @@ public function get_done_count( $flag = false ) {
 			$album_count = 0;
 		}
 
-		if ( isset( $_SESSION['migration_activity'] ) && intval( $_SESSION['migration_media'] ) === intval( $media_count ) ) {
-			$comment_sql = $_SESSION['migration_activity'];
+		if ( isset( $_SESSION['migration_activity'] ) && isset( $_SESSION['migration_media'] ) && intval( $_SESSION['migration_media'] ) === intval( $media_count ) ) {
+			$comment_sql = intval( $_SESSION['migration_activity'] );
 		} else {
-			// phpcs:disable WordPress.DB.PreparedSQL.NotPrepared
+			// phpcs:disable WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared 
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 			$comment_sql = $wpdb->get_var(
-				"select count(*) from $wpdb->comments a
-                        where a.comment_post_ID in (select b.media_id from $this->bmp_table b  left join
-                        {$wpdb->posts} p ON (b.media_id = p.ID) where  (NOT p.ID IS NULL) ) and a.comment_agent=''"
-			);
+				"SELECT COUNT(*)
+				FROM {$wpdb->comments} a
+				WHERE a.comment_post_ID IN (
+					SELECT b.media_id
+					FROM {$this->bmp_table} b
+					LEFT JOIN {$wpdb->posts} p ON b.media_id = p.ID
+					WHERE p.ID IS NOT NULL
+				)
+				AND a.comment_agent = ''"
+			); // phpcs:enable WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 
 		}
 
@@ -365,7 +392,8 @@ public function manage_album() {
 
 		global $wpdb;
 
-		$album_id = $wpdb->get_var( $wpdb->prepare( "select media_id from $this->bmp_table where id = %d", $album_rt_id ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+		$album_id = $wpdb->get_var( $wpdb->prepare( "select media_id from $this->bmp_table where id = %d", $album_rt_id ) );
 
 		if ( function_exists( 'bp_core_get_table_prefix' ) ) {
 			$bp_prefix = bp_core_get_table_prefix();
@@ -384,9 +412,11 @@ public function manage_album() {
 			}
 
 			$sql = $wpdb->prepare( "update {$bp_prefix}bp_activity set content=replace(content,%s,%s) where id > 0;", '<ul class="bp-media-list-media">', '<div class="rtmedia-activity-container"><ul class="rtmedia-list large-block-grid-3">' ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-			$wpdb->get_row( $sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+			$wpdb->get_row( $sql );
 			$sql = $wpdb->prepare( "update {$bp_prefix}bp_activity set content=replace(content,%s,%s) where id > 0;", '</ul>', '</ul></div>' ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-			$wpdb->get_row( $sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+			$wpdb->get_row( $sql );
 
 			$sql_group = "update $wpdb->posts set post_parent='{$album_id}' where post_parent in (select meta_value FROM $wpdb->usermeta where meta_key ='bp-media-default-album') ";
 
@@ -394,7 +424,8 @@ public function manage_album() {
 				$sql_group .= " or post_parent in (select meta_value FROM {$bp_prefix}bp_groups_groupmeta where meta_key ='bp_media_default_album')";
 			}
 
-			$wpdb->query( $sql_group ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+			$wpdb->query( $sql_group );
 			$stage = 1;
 			rtmedia_update_site_option( 'rtmedia-migration', $stage );
 			$this->return_migration();
@@ -402,7 +433,21 @@ public function manage_album() {
 
 		if ( $stage < 2 ) {
 
-			$results    = $wpdb->get_results( "select * from $wpdb->posts where post_type='bp_media_album' and ID in (select meta_value FROM $wpdb->usermeta where meta_key ='bp-media-default-album') limit 10" );
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+			$results = $wpdb->get_results(
+				$wpdb->prepare(
+					"SELECT * FROM `{$wpdb->posts}` 
+					WHERE post_type = %s 
+					AND ID IN (
+						SELECT meta_value 
+						FROM `{$wpdb->usermeta}` 
+						WHERE meta_key = %s
+					)
+					LIMIT 10",
+					'bp_media_album',
+					'bp-media-default-album'
+				)
+			);
 			$delete_ids = '';
 			$sep        = '';
 
@@ -413,8 +458,13 @@ public function manage_album() {
 			}
 
 			if ( '' !== $delete_ids ) {
-				// @todo missing prepare
-				$wpdb->query( "delete from $wpdb->posts where ID in ({$delete_ids})" ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+				$wpdb->query(
+					$wpdb->prepare(
+						"DELETE FROM `{$wpdb->posts}` WHERE ID IN (%s)",
+						$delete_ids
+					)
+				);
 			}
 
 			if ( count( $results ) < 10 ) {
@@ -429,8 +479,24 @@ public function manage_album() {
 
 			if ( $this->table_exists( $bp_prefix . 'bp_groups_groupmeta' ) ) {
 
-				$sql_delete = "select * from $wpdb->posts where post_type='bp_media_album' and ID in (select meta_value FROM {$bp_prefix}bp_groups_groupmeta where meta_key ='bp_media_default_album') limit 10";
-				$results    = $wpdb->get_results( $sql_delete ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+				$groupmeta_table = $bp_prefix . 'bp_groups_groupmeta';
+
+				// phpcs:disable WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+				$sql_delete = $wpdb->prepare(
+					"SELECT * FROM `{$wpdb->posts}` 
+					WHERE post_type = %s
+					AND ID IN (
+						SELECT meta_value 
+						FROM `{$groupmeta_table}` 
+						WHERE meta_key = %s
+					)
+					LIMIT 10",
+					'bp_media_album',
+					'bp_media_default_album'
+				); // phpcs:enable WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query is required for custom table, safe because SQL is prepared.
+				$results    = $wpdb->get_results( $sql_delete );
 				$delete_ids = '';
 				$sep        = '';
 
@@ -445,7 +511,8 @@ public function manage_album() {
 
 					if ( '' !== $delete_ids ) {
 						// @todo prepare
-						$wpdb->query( "delete from $wpdb->posts where ID in ({$delete_ids})" ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+						// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+						$wpdb->query( "delete from $wpdb->posts where ID in ({$delete_ids})" );
 					}
 
 					if ( count( $results ) < 10 ) {
@@ -465,7 +532,8 @@ public function manage_album() {
 
 		$sql = "update $wpdb->posts set post_type='{$album_post_type}' where post_type='bp_media_album'";
 
-		if ( false !== $wpdb->query( $sql ) ) { // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+		if ( false !== $wpdb->query( $sql ) ) {
 
 			rtmedia_update_site_option( 'rtmedia-migration', '5' );
 			return true;
@@ -514,6 +582,18 @@ public function test() {
 			</div>
 			<?php
 		}
+		// Enqueue migration script and pass runtime data.
+		wp_enqueue_script( 'rtmedia-migration', RTMEDIA_URL . 'app/assets/admin/js/migration.js', array( 'jquery' ), RTMEDIA_VERSION, true );
+		wp_localize_script(
+			'rtmedia-migration',
+			'rtmedia_migration',
+			array(
+				'done'       => (int) $done,
+				'total'      => (int) $total,
+				'admin_ajax' => admin_url( 'admin-ajax.php' ),
+			)
+		);
+
 		?>
 
 		<div class="wrap">
@@ -523,26 +603,25 @@ public function test() {
 			<h3><?php esc_html_e( 'It will migrate following things', 'buddypress-media' ); ?> </h3>
 			<?php
 			esc_html_e( 'User Albums : ', 'buddypress-media' );
-			echo esc_html( $_SESSION['migration_user_album'] );
+			echo esc_html( intval( isset( $_SESSION['migration_user_album'] ) ? $_SESSION['migration_user_album'] : 0 ) );
 			?>
 			<br/>
 			<?php
 			if ( isset( $_SESSION['migration_group_album'] ) ) {
 				esc_html_e( 'Groups Albums : ', 'buddypress-media' );
-				echo esc_html( $_SESSION['migration_group_album'] );
+				echo esc_html( intval( $_SESSION['migration_group_album'] ) );
 				?>
 				<br/>
 				<?php
 			}
 			esc_html_e( 'Media : ', 'buddypress-media' );
-			echo esc_html( $_SESSION['migration_media'] );
+			echo esc_html( intval( isset( $_SESSION['migration_media'] ) ? $_SESSION['migration_media'] : 0 ) );
 			?>
 			<br/>
-			?>
 			<?php
 			if ( isset( $_SESSION['migration_activity'] ) ) {
 				esc_html_e( 'Comments : ', 'buddypress-media' );
-				echo esc_html( $_SESSION['migration_activity'] );
+				echo esc_html( intval( $_SESSION['migration_activity'] ) );
 				?>
 				<br/>
 			<?php } ?>
@@ -565,72 +644,7 @@ public function test() {
 			$temp = $prog->progress( $done, $total );
 			$prog->progress_ui( $temp, true );
 			?>
-			<script type="text/javascript">
-				jQuery(document).ready(function (e) {
-					jQuery("#toplevel_page_rtmedia-settings").addClass("wp-has-current-submenu")
-					jQuery("#toplevel_page_rtmedia-settings").removeClass("wp-not-current-submenu")
-					jQuery("#toplevel_page_rtmedia-settings").addClass("wp-menu-open")
-					jQuery("#toplevel_page_rtmedia-settings>a").addClass("wp-menu-open")
-					jQuery("#toplevel_page_rtmedia-settings>a").addClass("wp-has-current-submenu")
-
-					if (db_total < 1)
-						jQuery("#submit").attr('disabled', "disabled");
-				});
-				function db_start_migration(db_done, db_total) {
-
-
-					if (db_done < db_total) {
-						jQuery("#rtMediaSyncing").show();
-						jQuery.ajax({
-							url: rtmedia_admin_ajax,
-							type: 'post',
-							data: {
-								"action": "bp_media_rt_db_migration",
-								"done": db_done
-							},
-							success: function (sdata) {
-
-								try {
-									data = JSON.parse(sdata);
-								} catch (e) {
-									jQuery("#submit").attr('disabled', "");
-								}
-								if (data.status) {
-									done = parseInt(data.done);
-									total = parseInt(data.total);
-									var progw = Math.ceil((done / total) * 100);
-									if (progw > 100) {
-										progw = 100;
-									}
-									jQuery('#rtprogressbar>div').css('width', progw + '%');
-									jQuery('span.finished').html(done);
-									jQuery('span.total').html(total);
-									jQuery('span.pending').html(data.pending);
-									db_start_migration(done, total);
-								} else {
-									alert("Migration completed.");
-									jQuery("#rtMediaSyncing").hide();
-								}
-							},
-							error: function () {
-								alert("<?php esc_html_e( 'Error During Migration, Please Refresh Page then try again', 'buddypress-media' ); ?>");
-								jQuery("#submit").removeAttr('disabled');
-							}
-						});
-					} else {
-						alert("Migration completed.");
-						jQuery("#rtMediaSyncing").hide();
-					}
-				}
-				var db_done = <?php echo esc_js( $done ); ?>;
-				var db_total = <?php echo esc_js( $total ); ?>;
-				jQuery(document).on('click', '#submit', function (e) {
-					e.preventDefault();
-
-					db_start_migration(db_done, db_total);
-					jQuery(this).attr('disabled', 'disabled');
-				});
-			</script>
+
 			<hr/>
 			<?php if ( ! ( isset( $rtmedia_error ) && true === $rtmedia_error ) ) { ?>
 				<input type="button" id="submit" value="<?php esc_attr_e( 'Start', 'buddypress-media' ); ?>" class="button button-primary"/>
@@ -695,7 +709,8 @@ public function migrate_to_new_db( $lastid = 0, $limit = 1 ) {
                 order by a.post_id
                 limit %d";
 
-			$results = $wpdb->get_results( $wpdb->prepare( $sql, $lastid, $limit ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+			$results = $wpdb->get_results( $wpdb->prepare( $sql, $lastid, $limit ) );
 
 			if ( function_exists( 'bp_core_get_table_prefix' ) ) {
 				$bp_prefix = bp_core_get_table_prefix();
@@ -762,7 +777,8 @@ public function migrate_single_media( $result, $album = false ) {
 
 		if ( false !== $album && ! ( is_object( $result ) ) ) {
 
-			$id = $wpdb->get_var( $wpdb->prepare( "select ID from {$this->bmp_table} where media_id = %d", $result ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+			$id = $wpdb->get_var( $wpdb->prepare( "select ID from {$this->bmp_table} where media_id = %d", $result ) );
 
 			if ( null === $id ) {
 				$sql    = "select
@@ -788,7 +804,7 @@ public function migrate_single_media( $result, $album = false ) {
                     where
                         a.post_id = %d and (NOT p.ID IS NULL)
                             and a.meta_key = 'bp_media_privacy'";
-				$result = $wpdb->get_row( $wpdb->prepare( $sql, $result ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+				$result = $wpdb->get_row( $wpdb->prepare( $sql, $result ) ); // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 			} else {
 				return $id;
 			}
@@ -826,31 +842,30 @@ public function migrate_single_media( $result, $album = false ) {
 			}
 		}
 
-		$activity_data = $wpdb->get_row( $wpdb->prepare( "select * from {$bp_prefix}bp_activity where id= %d", $result->activity_id ) ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
+		$activity_data = $wpdb->get_row( $wpdb->prepare( "select * from {$bp_prefix}bp_activity where id= %d", $result->activity_id ) );
 		if ( 'album' !== $media_type ) {
 			$this->importmedia( $media_id, $prefix );
 		}
 
 		if ( $this->table_exists( $bp_prefix . 'bp_activity' ) && class_exists( 'BP_Activity_Activity' ) ) {
 			$bp_activity = new BP_Activity_Activity();
-			// phpcs:disable WordPress.DB.PreparedSQL.NotPrepared
+			// phpcs:disable WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 			$activity_sql = $wpdb->prepare(
-				"SELECT
-                            *
-                        FROM
-                            {$bp_prefix}bp_activity
-                        where
-                                        id in (select distinct
-                                    a.meta_value
-                                from
-                                    $wpdb->postmeta a
-                                        left join
-                                    $wpdb->posts p ON (a.post_id = p.ID)
-                                where
-                                    (NOT p.ID IS NULL) and p.ID = %d
-                and a.meta_key = 'bp_media_child_activity')",
-				$media_id
+				"SELECT *
+				FROM {$bp_prefix}bp_activity
+				WHERE id IN (
+					SELECT DISTINCT a.meta_value
+					FROM $wpdb->postmeta a
+					LEFT JOIN $wpdb->posts p ON a.post_id = p.ID
+					WHERE (NOT p.ID IS NULL)
+					AND p.ID = %d
+					AND a.meta_key = %s
+				)",
+				$media_id,
+				'bp_media_child_activity'
 			);
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 			$all_activity = $wpdb->get_results( $activity_sql );
 
 			remove_all_actions( 'wp_insert_comment' );
@@ -876,6 +891,7 @@ public function migrate_single_media( $result, $album = false ) {
 			$likes = 0;
 		}
 
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 		$wpdb->insert(
 			$this->bmp_table,
 			array(
@@ -894,6 +910,7 @@ public function migrate_single_media( $result, $album = false ) {
 			array( '%d', '%d', '%s', '%s', '%d', '%d', '%d', '%d', '%s', '%d', '%d' )
 		);
 
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 		$last_id = $wpdb->insert_id;
 
 		if ( 'album' !== $media_type && ( function_exists( 'bp_core_get_user_domain' ) || function_exists( 'bp_members_get_user_url' ) ) && $activity_data ) {
@@ -916,6 +933,7 @@ public function migrate_single_media( $result, $album = false ) {
 				$activity_data->content = str_replace( $last_baseurl, $replace_img, $activity_data->content );
 			}
 			global $wpdb;
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 			$wpdb->update(
 				$bp_prefix . 'bp_activity',
 				array(
@@ -1053,12 +1071,22 @@ public function importmedia( $id, $prefix ) {
 		$kaltura_remote_id     = get_post_meta( $id, 'bp_media_kaltura_remote_id', true );
 
 		if ( wp_mkdir_p( $basedir . "rtMedia/$prefix/" . $year_month ) ) {
-			if ( copy( $attached_file, str_replace( $basedir, $basedir . "rtMedia/$prefix/", $attached_file ) ) ) {
+			if ( ! function_exists( 'WP_Filesystem' ) ) {
+				require_once ABSPATH . 'wp-admin/includes/file.php';
+			}
+
+			global $wp_filesystem;
+
+			if ( ! $wp_filesystem ) {
+				WP_Filesystem();
+			}
+
+			if ( $wp_filesystem->copy( $attached_file, str_replace( $basedir, $basedir . "rtMedia/$prefix/", $attached_file ), true ) ) {
 				$delete = true;
 
 				if ( isset( $metadata['sizes'] ) ) {
 					foreach ( $metadata['sizes'] as $size ) {
-						if ( ! copy( $file_folder_path . $size['file'], $new_file_folder_path . $size['file'] ) ) {
+						if ( ! $wp_filesystem->copy( $file_folder_path . $size['file'], $new_file_folder_path . $size['file'], true ) ) {
 							$delete = false;
 						} else {
 							$delete_sizes[] = $file_folder_path . $size['file'];
@@ -1068,7 +1096,7 @@ public function importmedia( $id, $prefix ) {
 				}
 				if ( $backup_metadata ) {
 					foreach ( $backup_metadata as $backup_images ) {
-						if ( ! copy( $file_folder_path . $backup_images['file'], $new_file_folder_path . $backup_images['file'] ) ) {
+						if ( ! $wp_filesystem->copy( $file_folder_path . $backup_images['file'], $new_file_folder_path . $backup_images['file'], true ) ) {
 							$delete = false;
 						} else {
 							$delete_sizes[] = $file_folder_path . $backup_images['file'];
@@ -1080,7 +1108,7 @@ public function importmedia( $id, $prefix ) {
 				if ( $instagram_thumbs ) {
 					foreach ( $instagram_thumbs as $key => $insta_thumb ) {
 						try {
-							if ( ! copy( str_replace( $baseurl, $basedir, $insta_thumb ), str_replace( $baseurl, $basedir . "rtMedia/$prefix/", $insta_thumb ) ) ) {
+							if ( ! $wp_filesystem->copy( str_replace( $baseurl, $basedir, $insta_thumb ), str_replace( $baseurl, $basedir . "rtMedia/$prefix/", $insta_thumb ), true ) ) {
 								$delete = false;
 							} else {
 								$delete_sizes[]               = str_replace( $baseurl, $basedir, $insta_thumb );
@@ -1095,7 +1123,7 @@ public function importmedia( $id, $prefix ) {
 
 				if ( $instagram_full_images ) {
 					foreach ( $instagram_full_images as $key => $insta_full_image ) {
-						if ( ! copy( $insta_full_image, str_replace( $basedir, $basedir . "rtMedia/$prefix/", $insta_full_image ) ) ) {
+						if ( ! $wp_filesystem->copy( $insta_full_image, str_replace( $basedir, $basedir . "rtMedia/$prefix/", $insta_full_image ), true ) ) {
 							$delete = false;
 						} else {
 							$delete_sizes[]                    = $insta_full_image;
@@ -1109,14 +1137,14 @@ public function importmedia( $id, $prefix ) {
 					$instagram_metadata_new = $instagram_metadata;
 					foreach ( $instagram_metadata as $wp_size => $insta_metadata ) {
 						if ( isset( $insta_metadata['file'] ) ) {
-							if ( ! copy( $basedir . $insta_metadata['file'], $basedir . "rtMedia/$prefix/" . $insta_metadata['file'] ) ) {
+							if ( ! $wp_filesystem->copy( $basedir . $insta_metadata['file'], $basedir . "rtMedia/$prefix/" . $insta_metadata['file'], true ) ) {
 								$delete = false;
 							} else {
 								$delete_sizes[]                             = $basedir . $insta_metadata['file'];
 								$instagram_metadata_new[ $wp_size ]['file'] = "rtMedia/$prefix/" . $insta_metadata['file'];
 								if ( isset( $insta_metadata['sizes'] ) ) {
 									foreach ( $insta_metadata['sizes'] as $key => $insta_size ) {
-										if ( ! copy( $file_folder_path . $insta_size['file'], $new_file_folder_path . $insta_size['file'] ) ) {
+										if ( ! $wp_filesystem->copy( $file_folder_path . $insta_size['file'], $new_file_folder_path . $insta_size['file'], true ) ) {
 											$delete = false;
 										} else {
 											$delete_sizes[] = $file_folder_path . $insta_size['file'];
@@ -1131,13 +1159,13 @@ public function importmedia( $id, $prefix ) {
 
 				if ( $delete ) {
 					if ( file_exists( $attached_file ) ) {
-						unlink( $attached_file );
+						$wp_filesystem->delete( $attached_file );
 					}
 
 					if ( isset( $delete_sizes ) ) {
 						foreach ( $delete_sizes as $delete_size ) {
 							if ( file_exists( $delete_size ) ) {
-								unlink( $delete_size );
+								$wp_filesystem->delete( $delete_size );
 							}
 						}
 					}
@@ -1203,9 +1231,8 @@ public function search_and_replace( $old, $new ) {
 		} else {
 			$bp_prefix = $wpdb->prefix;
 		}
-
 		$sql = $wpdb->prepare( "update {$bp_prefix}bp_activity set action=replace(action,%s,%s) ,content=replace(content,%s,%s), primary_link=replace(primary_link,%s,%s) where id > 0;", $old, $new, $old, $new, $old, $new ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
-		$wpdb->get_row( $sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		$wpdb->get_row( $sql ); // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- Direct query is required for custom table.
 	}
 
 	/**
diff --git a/app/importers/templates/activity-upgrade.php b/app/importers/templates/activity-upgrade.php
index 30fa49d16..6e8f0132f 100644
--- a/app/importers/templates/activity-upgrade.php
+++ b/app/importers/templates/activity-upgrade.php
@@ -28,6 +28,7 @@
 
 	$temp = $prog->progress( $done, $total );
 	$prog->progress_ui( $temp, true );
+	// No a security issue, so keeping the style here.
 	?>
 	<style type="text/css">
 		#rtprogressbar {
@@ -44,89 +45,14 @@
 			width: 0;
 		}
 	</style>
-	<script type="text/javascript">
-		var fail_id = new Array();
-		var ajax_data;
-		jQuery(document).ready(function (e) {
-			jQuery("#toplevel_page_rtmedia-settings").addClass("wp-has-current-submenu")
-			jQuery("#toplevel_page_rtmedia-settings").removeClass("wp-not-current-submenu")
-			jQuery("#toplevel_page_rtmedia-settings").addClass("wp-menu-open")
-			jQuery("#toplevel_page_rtmedia-settings>a").addClass("wp-menu-open")
-			jQuery("#toplevel_page_rtmedia-settings>a").addClass("wp-has-current-submenu")
-			if (db_total < 1)
-				jQuery("#submit").attr('disabled', "disabled");
-		});
-		function db_start_migration(db_done, db_total, last_id) {
-
-			if (db_done < db_total) {
-				jQuery("#rtMediaSyncing").show();
-				ajax_data = {
-					"action": "rtmedia_activity_upgrade",
-					"done": db_done,
-					"last_id": last_id,
-					"nonce": jQuery.trim(jQuery('#rtmedia_media_activity_upgrade_nonce').val())
-				};
-				jQuery.ajax({
-					url: '<?php echo esc_url( $admin_ajax ); ?>',
-					type: 'post',
-					data: ajax_data,
-					success: function (sdata) {
-
-						try {
-							data = JSON.parse(sdata);
-						} catch (e) {
-							jQuery("#submit").attr('disabled', "");
-						}
-						if (data.status) {
-							done = parseInt(data.done);
-							total = parseInt(data.total);
-							var progw = Math.ceil((done / total) * 100);
-							if (progw > 100) {
-								progw = 100;
-							}
-							jQuery('#rtprogressbar>div').css('width', progw + '%');
-							jQuery('span.finished').html(done);
-							jQuery('span.total').html(total);
-							jQuery('span.pending').html(data.pending);
-							if (data.imported === false) {
-								fail_id.push(data.activity_id);
-							}
-							db_start_migration(done, total, parseInt(data.activity_id));
-						} else {
-							alert("Migration completed.");
-							jQuery("#rtMediaSyncing").hide();
-						}
-					},
-					error: function () {
-						alert("Error During Migration, Please Refresh Page then try again");
-						jQuery("#submit").removeAttr('disabled');
-					}
-				});
-			} else {
-				data = {
-					action: 'rtmedia_activity_done_upgrade'
-				};
-				jQuery.post('<?php echo esc_sql( $admin_ajax ); ?>', data, function () {
-					alert("Database upgrade completed.");
-				});
-				if (fail_id.length > 0) {
-					rtm_show_file_error();
-				}
-				jQuery("#rtMediaSyncing").hide();
-			}
-		}
-		function rtm_show_file_error() {
-			jQuery('span.pending').html("Some activities are failed to upgrade, Don't worry about that.");
-		}
-		var db_done = <?php echo esc_js( $done ); ?>;
-		var db_total = <?php echo esc_js( $total ); ?>;
-		var last_id = <?php echo esc_js( $last_id ); ?>;
-		jQuery(document).on('click', '#submit', function (e) {
-			e.preventDefault();
-			db_start_migration(db_done, db_total, last_id);
-			jQuery(this).attr('disabled', 'disabled');
-		});
-	</script>
+	<div id="rtm-importer-root"
+		data-importer="activity-upgrade"
+		data-done="<?php echo esc_attr( $done ); ?>"
+		data-total="<?php echo esc_attr( $total ); ?>"
+		data-last-id="<?php echo esc_attr( $last_id ); ?>"
+		data-admin-ajax="<?php echo esc_url( $admin_ajax ); ?>"
+		data-nonce-field-id="rtmedia_media_activity_upgrade_nonce">
+	</div>
 	<hr/>
 	<?php if ( ! ( isset( $rtmedia_error ) && true === $rtmedia_error ) ) { ?>
 		<input type="button" id="submit" value="start" class="button button-primary"/>
diff --git a/app/importers/templates/media-size-importer.php b/app/importers/templates/media-size-importer.php
index 0afcb01b0..c92840ab5 100644
--- a/app/importers/templates/media-size-importer.php
+++ b/app/importers/templates/media-size-importer.php
@@ -29,83 +29,13 @@
 	$temp = $prog->progress( $done, $total );
 	$prog->progress_ui( $temp, true );
 	?>
-	<script type="text/javascript">
-		var fail_id = new Array();
-		var ajax_data;
-		jQuery(document).ready(function (e) {
-			jQuery("#toplevel_page_rtmedia-settings").addClass("wp-has-current-submenu")
-			jQuery("#toplevel_page_rtmedia-settings").removeClass("wp-not-current-submenu")
-			jQuery("#toplevel_page_rtmedia-settings").addClass("wp-menu-open")
-			jQuery("#toplevel_page_rtmedia-settings>a").addClass("wp-menu-open")
-			jQuery("#toplevel_page_rtmedia-settings>a").addClass("wp-has-current-submenu")
-			if (db_total < 1)
-				jQuery("#submit").attr('disabled', "disabled");
-		});
-		function db_start_migration(db_done, db_total, last_id) {
-
-			if (db_done < db_total) {
-				jQuery("#rtMediaSyncing").show();
-				ajax_data = {
-					"action": "rtmedia_media_size_import",
-					"done": db_done,
-					"last_id": last_id,
-					"nonce": jQuery.trim(jQuery('#rtmedia_media_size_import_nonce').val())
-				};
-				jQuery.ajax({
-					url: rtmedia_admin_ajax,
-					type: 'post',
-					data: ajax_data,
-					success: function (sdata) {
-
-						try {
-							data = JSON.parse(sdata);
-						} catch (e) {
-							jQuery("#submit").attr('disabled', "");
-						}
-						if (data.status) {
-							done = parseInt(data.done);
-							total = parseInt(data.total);
-							var progw = Math.ceil((done / total) * 100);
-							if (progw > 100) {
-								progw = 100;
-							}
-							jQuery('#rtprogressbar>div').css('width', progw + '%');
-							jQuery('span.finished').html(done);
-							jQuery('span.total').html(total);
-							jQuery('span.pending').html(data.pending);
-							if (data.imported === false) {
-								fail_id.push(data.media_id);
-							}
-							db_start_migration(done, total, parseInt(data.media_id));
-						} else {
-							alert("Migration completed.");
-							jQuery("#rtMediaSyncing").hide();
-						}
-					},
-					error: function () {
-						alert("Error During Migration, Please Refresh Page then try again");
-						jQuery("#submit").removeAttr('disabled');
-					}
-				});
-			} else {
-				alert("Migration completed.");
-				if (fail_id.length > 0) {
-					rtm_show_file_error();
-				}
-				jQuery("#rtMediaSyncing").hide();
-			}
-		}
-		function rtm_show_file_error() {
-			jQuery('span.pending').text("Media with ID: " + fail_id.join(', ') + " can not be imported. Please check your server error log for more details. Don't worry, you can end importing media size now :)");
-		}
-		var db_done = <?php echo esc_js( $done ); ?>;
-		var db_total = <?php echo esc_js( $total ); ?>;
-		jQuery(document).on('click', '#submit', function (e) {
-			e.preventDefault();
-			db_start_migration(db_done, db_total, 0);
-			jQuery(this).attr('disabled', 'disabled');
-		});
-	</script>
+	<div id="rtm-importer-root"
+		data-importer="media-size"
+		data-done="<?php echo esc_attr( $done ); ?>"
+		data-total="<?php echo esc_attr( $total ); ?>"
+		data-last-id="0"
+		data-nonce-field-id="rtmedia_media_size_import_nonce">
+	</div>
 	<hr/>
 	<?php if ( ! ( isset( $rtmedia_error ) && true === $rtmedia_error ) ) { ?>
 		<input type="button" id="submit" value="start" class="button button-primary"/>
diff --git a/app/main/RTMedia.php b/app/main/RTMedia.php
index 8a16b3e59..8db7ce959 100755
--- a/app/main/RTMedia.php
+++ b/app/main/RTMedia.php
@@ -112,9 +112,9 @@ public function __construct() {
 		add_action( 'plugins_loaded', array( $this, 'load_translation' ), 10 );
 		add_action( 'plugins_loaded', array( $this, 'init' ), 20 );
 		add_action( 'wp_enqueue_scripts', array( 'RTMediaGalleryShortcode', 'register_scripts' ) );
-		add_action( 'wp_enqueue_scripts', array( &$this, 'enqueue_scripts_styles' ), 999 );
+		add_action( 'wp_enqueue_scripts', array( $this, 'enqueue_scripts_styles' ), 999 );
 
-		// WordPress 6.7 compatibility
+		// WordPress 6.7 compatibility.
 		add_action( 'wp_enqueue_scripts', array( $this, 'wp67_compatibility_scripts' ), 1 );
 		add_action( 'admin_enqueue_scripts', array( $this, 'wp67_compatibility_scripts' ), 1 );
 
@@ -192,7 +192,7 @@ public function fix_parent_id() {
 				global $wpdb;
 				$row = $album_row['result'][0];
 				if ( isset( $row['media_id'] ) ) {
-					// phpcs:disable WordPress.DB.PreparedSQL.NotPrepared
+					// phpcs:disable WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
 					$sql = $wpdb->prepare(
 						"update $wpdb->posts p
                                 left join
@@ -207,7 +207,8 @@ public function fix_parent_id() {
 						get_current_blog_id(),
 						$row['media_id'],
 						'%/rtMedia/%'
-					);
+					); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+					// phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 					$wpdb->query( $sql );
 				}
 			}
@@ -221,7 +222,8 @@ public function fix_privacy() {
 		global $wpdb;
 		$model      = new RTMediaModel();
 		$update_sql = "UPDATE {$model->table_name} SET privacy = '80' where privacy = '-1' ";
-		$wpdb->query( $update_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		// phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+		$wpdb->query( $update_sql );
 	}
 
 	/**
@@ -232,15 +234,17 @@ public function fix_group_media_privacy() {
 		// if buddypress is active and groups are enabled.
 		global $wpdb;
 		$table_exist = false;
-		if ( $wpdb->query( "SHOW TABLES LIKE '{$wpdb->prefix}bp_groups'" ) ) {
+		// phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+		$bp_groups_exists = $wpdb->query( "SHOW TABLES LIKE '{$wpdb->prefix}bp_groups'" );
+		if ( $bp_groups_exists ) {
 			$table_exist = true;
 		}
 		if ( class_exists( 'BuddyPress' ) && $table_exist ) {
 			$model     = new RTMediaModel();
 			$sql_group = " UPDATE $model->table_name m join {$wpdb->prefix}bp_groups bp on m.context_id = bp.id SET m.privacy = 0 where m.context = 'group' and bp.status = 'public' and m.privacy <> 80 ";
-			$wpdb->query( $sql_group ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+			$wpdb->query( $sql_group ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
 			$sql_group = " UPDATE $model->table_name m join {$wpdb->prefix}bp_groups bp on m.context_id = bp.id SET m.privacy = 20 where m.context = 'group' and ( bp.status = 'private' OR bp.status = 'hidden' ) and m.privacy <> 80 ";
-			$wpdb->query( $sql_group ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+			$wpdb->query( $sql_group ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
 		}
 	}
 
@@ -252,11 +256,11 @@ public function fix_db_collation() {
 		$model             = new RTMediaModel();
 		$interaction_model = new RTMediaInteractionModel();
 		$update_media_sql  = 'ALTER TABLE ' . $model->table_name . ' CONVERT TO CHARACTER SET utf8 COLLATE utf8_general_ci';
-		$wpdb->query( $update_media_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		$wpdb->query( $update_media_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- No caching required for altering table.
 		$update_media_meta_sql = 'ALTER TABLE ' . $wpdb->base_prefix . $model->meta_table_name . ' CONVERT TO CHARACTER SET utf8 COLLATE utf8_general_ci';
-		$wpdb->query( $update_media_meta_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		$wpdb->query( $update_media_meta_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- No caching required for altering table.
 		$update_media_interaction_sql = 'ALTER TABLE ' . $interaction_model->table_name . ' CONVERT TO CHARACTER SET utf8 COLLATE utf8_general_ci';
-		$wpdb->query( $update_media_interaction_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		$wpdb->query( $update_media_interaction_sql ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- No caching required for altering table.
 	}
 
 	/**
@@ -371,6 +375,7 @@ public function add_image_sizes() {
 	 */
 	public function custom_style_for_image_size() {
 		if ( apply_filters( 'rtmedia_custom_image_style', true ) ) {
+			// No a security issue, so keeping the style here.
 			?>
 			<style type="text/css">
 				<?php
@@ -564,7 +569,7 @@ public function set_allowed_types() {
 				'plural'              => 'videos',
 				'label'               => esc_html__( 'Video', 'buddypress-media' ),
 				'plural_label'        => esc_html__( 'Videos', 'buddypress-media' ),
-				'extn'                => array( 'mp4' ),
+				'extn'                => array( 'mp4', 'mov', 'mpg', 'flv', 'wmv', 'mkv', 'webm', 'ogv', 'asf', 'qt', 'mpeg', 'm4v' ),
 				'thumbnail'           => RTMEDIA_URL . 'app/assets/admin/img/video_thumb.png',
 				'settings_visibility' => true,
 			),
@@ -573,7 +578,7 @@ public function set_allowed_types() {
 				'plural'              => 'music',
 				'label'               => esc_html__( 'Music', 'buddypress-media' ),
 				'plural_label'        => esc_html__( 'Music', 'buddypress-media' ),
-				'extn'                => array( 'mp3' ),
+				'extn'                => array( 'mp3', 'wma', 'ogg', 'wav', 'm4a' ),
 				'thumbnail'           => RTMEDIA_URL . 'app/assets/admin/img/audio_thumb.png',
 				'settings_visibility' => true,
 			),
@@ -1117,16 +1122,15 @@ public static function load_translation() {
 	 * @return bool
 	 */
 	public function check_global_album() {
-		// todo: Nonce required.
 		$album        = new RTMediaAlbum();
 		$global_album = $album->get_default();
 
-		$action = sanitize_text_field( filter_input( INPUT_POST, 'action', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
-		$mode   = sanitize_text_field( filter_input( INPUT_POST, 'mode', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
+		$action = sanitize_text_field( filter_input( INPUT_POST, 'action', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) ); // phpcs:ignore WordPress.Security.NonceVerification.Recommended, WordPress.Security.NonceVerification.NoNonceVerification -- We are just intercepting if a action is for a different kind of upload and removing a field based on it.
+		$mode   = sanitize_text_field( filter_input( INPUT_POST, 'mode', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );   // phpcs:ignore WordPress.Security.NonceVerification.Recommended, WordPress.Security.NonceVerification.NoNonceVerification -- We are just intercepting if a action is for a different kind of upload and removing a field based on it.
 
 		// Hack for plupload default name.
 		if ( ! empty( $action ) && ! empty( $mode ) && 'file_upload' === $mode ) {
-			unset( $_POST['name'] ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing
+			unset( $_POST['name'] ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- We are removing the value from the $_POST.
 		}
 
 		global $rtmedia_error;
@@ -1222,9 +1226,9 @@ public function create_table_error_notice() {
 	public function ensure_wp67_compatibility() {
 		global $wp_version;
 
-		// Check if we're running WordPress 6.7 or higher
+		// Check if we're running WordPress 6.7 or higher.
 		if ( version_compare( $wp_version, '6.7', '>=' ) ) {
-			// Enqueue jQuery Migrate if not already enqueued to maintain backward compatibility
+			// Enqueue jQuery Migrate if not already enqueued to maintain backward compatibility.
 			if ( ! wp_script_is( 'jquery-migrate', 'enqueued' ) ) {
 				wp_enqueue_script( 'jquery-migrate' );
 			}
@@ -1238,9 +1242,9 @@ public function ensure_wp67_compatibility() {
 	 * @since 4.6.23
 	 */
 	public function wp67_compatibility_scripts() {
-	global $wp_version;
+		global $wp_version;
 
-		// Enqueue jQuery Migrate for WordPress 6.7+ compatibility
+		// Enqueue jQuery Migrate for WordPress 6.7+ compatibility.
 		if ( version_compare( $wp_version, '6.7', '>=' ) ) {
 			if ( wp_script_is( 'jquery', 'enqueued' ) && ! wp_script_is( 'jquery-migrate', 'enqueued' ) ) {
 				wp_enqueue_script( 'jquery-migrate' );
@@ -1257,31 +1261,16 @@ public function wp67_compatibility_scripts() {
 	public function wp67_media_element_init() {
 		global $wp_version;
 
-		if ( version_compare( $wp_version, '6.7', '>=' ) ) {
-			?>
-			<script type="text/javascript">
-			jQuery(document).ready(function($) {
-				// WordPress 6.7 compatibility: Initialize MediaElement if not already done
-				if (typeof wp !== 'undefined' && wp.mediaelement && wp.mediaelement.initialize) {
-					wp.mediaelement.initialize();
-				}
-
-				// Fallback for older MediaElement initialization
-				if (typeof $().mediaelementplayer !== 'undefined') {
-					$('.wp-audio-shortcode, .wp-video-shortcode').not('.mejs-container').mediaelementplayer({
-						success: function(mediaElement, domObject) {
-							// MediaElement successfully initialized
-						}
-					});
-				}
+		$suffix = ( function_exists( 'rtm_get_script_style_suffix' ) ) ? rtm_get_script_style_suffix() : '.min';
 
-				// WordPress 6.7 compatibility: Add console log to verify fixes are working
-				if (window.console && console.log) {
-					console.log('rtMedia: WordPress 6.7 compatibility mode active');
-				}
-			});
-			</script>
-			<?php
+		if ( version_compare( $wp_version, '6.7', '>=' ) ) {
+			wp_enqueue_script(
+				'rtmedia-wp67-mediaelement-init',
+				RTMEDIA_URL . 'app/assets/js/wp67-mediaelement-init' . $suffix . '.js',
+				array( 'jquery' ),
+				RTMEDIA_VERSION,
+				true
+			);
 		}
 	}
 
@@ -1291,11 +1280,11 @@ public function wp67_media_element_init() {
 	public function enqueue_scripts_styles() {
 		global $rtmedia, $bp, $rtmedia_interaction;
 
-		// WordPress 6.7 compatibility: Ensure jQuery Migrate is loaded for backward compatibility
+		// WordPress 6.7 compatibility: Ensure jQuery Migrate is loaded for backward compatibility.
 		$this->ensure_wp67_compatibility();
 
-		// Initialize WordPress 6.7 media element compatibility
-		add_action( 'wp_footer', array( $this, 'wp67_media_element_init' ), 20 );
+		// Initialize WordPress 6.7 media element compatibility.
+		$this->wp67_media_element_init();
 
 		$rtmedia_main     = array();
 		$rtmedia_backbone = array();
@@ -1303,7 +1292,7 @@ public function enqueue_scripts_styles() {
 
 		$bp_template = get_option( '_bp_theme_package_id' );
 
-		// Ensure MediaElement compatibility with WordPress 6.7
+		// Ensure MediaElement compatibility with WordPress 6.7.
 		wp_enqueue_script( 'rt-mediaelement', RTMEDIA_URL . 'lib/media-element/mediaelement-and-player.min.js', array( 'jquery' ), RTMEDIA_VERSION, true );
 		wp_enqueue_style( 'rt-mediaelement', RTMEDIA_URL . 'lib/media-element/mediaelementplayer-legacy.min.css', '', RTMEDIA_VERSION );
 		wp_enqueue_style( 'rt-mediaelement-wp', RTMEDIA_URL . 'lib/media-element/wp-mediaelement.min.css', '', RTMEDIA_VERSION );
@@ -1487,7 +1476,8 @@ public function enqueue_scripts_styles() {
 
 		// Localizing strings for rtMedia.backbone.js.
 		$rtmedia_backbone_strings = array(
-			'rtm_edit_file_name' => esc_html__( 'Edit File Name', 'buddypress-media' ),
+			'rtm_edit_file_name'          => esc_html__( 'Edit File Name', 'buddypress-media' ),
+			'rtmedia_album_gallery_nonce' => wp_create_nonce( 'rtmedia_album_gallery' ),
 		);
 
 		// Localise fot rtmedia-backcone js.
@@ -1743,7 +1733,7 @@ public function enqueue_scripts_styles() {
 
 			wp_localize_script( 'rtmedia-backbone', 'rtMedia_update_plupload_config', $params );
 		}
-		// Register BuddyPress Nouveau script only if it doesn't exist
+		// Register BuddyPress Nouveau script only if it doesn't exist.
 		if ( ! wp_script_is( 'bp-nouveau', 'registered' ) ) {
 			wp_register_script(
 				'bp-nouveau',
diff --git a/app/main/contexts/RTMediaContext.php b/app/main/contexts/RTMediaContext.php
index 935c2f2db..5519bf2f7 100755
--- a/app/main/contexts/RTMediaContext.php
+++ b/app/main/contexts/RTMediaContext.php
@@ -103,12 +103,10 @@ public function set_bp_context() {
 	public function set_bp_component_context() {
 		if ( bp_displayed_user_id() && ! bp_is_group() ) {
 			$this->type = 'profile';
-		} else {
-			if ( ! bp_displayed_user_id() && bp_is_group() ) {
+		} elseif ( ! bp_displayed_user_id() && bp_is_group() ) {
 				$this->type = 'group';
-			} else {
-				$this->type = 'profile';
-			}
+		} else {
+			$this->type = 'profile';
 		}
 		$this->id = $this->get_current_bp_component_id();
 		if ( null === $this->id ) {
diff --git a/app/main/controllers/activity/RTMediaActivity.php b/app/main/controllers/activity/RTMediaActivity.php
index 815c76769..2f9a8cebb 100755
--- a/app/main/controllers/activity/RTMediaActivity.php
+++ b/app/main/controllers/activity/RTMediaActivity.php
@@ -175,7 +175,7 @@ function ( $current_media ) {
 			}
 
 			$media_content .= '</li>';
-			$count ++;
+			$count++;
 		}
 
 		$media_container_start_class = 'rtmedia-list';
diff --git a/app/main/controllers/activity/RTMediaBuddyPressActivity.php b/app/main/controllers/activity/RTMediaBuddyPressActivity.php
index 2d1b5daea..5f39e8263 100644
--- a/app/main/controllers/activity/RTMediaBuddyPressActivity.php
+++ b/app/main/controllers/activity/RTMediaBuddyPressActivity.php
@@ -393,6 +393,7 @@ public function filter_activity_with_blog( $query_string ) {
 		$transient_name = 'rtm_filter_blog_activity_' . $blog_id;
 		$activity_ids   = get_site_transient( $transient_name );
 		if ( empty( $activity_ids ) ) {
+			// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 			$activities   = $wpdb->get_col( $wpdb->prepare( "SELECT DISTINCT activity_id FROM {$wpdb->base_prefix}rt_rtm_activity WHERE blog_id!=%d", $blog_id ) );
 			$activity_ids = implode( ',', $activities );
 
@@ -539,6 +540,7 @@ public function bp_activity_type_before_save( $type ) {
 	 */
 	public function delete_comment_sync( $activity_id, $comment_id ) {
 		global $wpdb;
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
 		$comment_id = $wpdb->get_var( $wpdb->prepare( "select comment_id from {$wpdb->commentmeta} where meta_key = 'activity_id' and meta_value = %s", $comment_id ) );
 		if ( $comment_id ) {
 			wp_delete_comment( $comment_id, true );
@@ -1491,8 +1493,7 @@ public function bp_before_activity_post_update_parse_args( $args ) {
 		// if content is non-breaking space then set it to empty.
 		if ( isset( $args['content'] ) && '' === $args['content'] ) {
 
-			// Nonce verification is not required here as it is already done in previously.
-			if ( ! empty( $_POST['rtMedia_attached_files'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing
+			if ( ! empty( $_POST['rtMedia_attached_files'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing -- Not needed since we  are only checking if the field exists and it is done already.
 				$args['content'] = '&nbsp;';
 			}
 		}
diff --git a/app/main/controllers/api/RTMediaJsonApi.php b/app/main/controllers/api/RTMediaJsonApi.php
index a5d402de9..f16426139 100644
--- a/app/main/controllers/api/RTMediaJsonApi.php
+++ b/app/main/controllers/api/RTMediaJsonApi.php
@@ -161,10 +161,6 @@ public function __construct() {
 
 		add_action( 'wp_ajax_nopriv_rtmedia_api', array( $this, 'rtmedia_api_process_request' ) );
 		add_action( 'wp_ajax_rtmedia_api', array( $this, 'rtmedia_api_process_request' ) );
-
-		if ( defined( 'RTMEDIA_GODAM_ACTIVE' ) && RTMEDIA_GODAM_ACTIVE ) {
-			add_action( 'rest_api_init', [ $this, 'register_rest_pre_dispatch_filter' ] );
-		}
 	}
 
 	/**
@@ -478,6 +474,7 @@ public function rtmedia_api_process_wp_forgot_password_request() {
 		}
 
 		$hashed = $wp_hasher->HashPassword( $key );
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
 		$wpdb->update( $wpdb->users, array( 'user_activation_key' => $hashed ), array( 'user_login' => sanitize_user( $user_login ) ) );
 
 		// create email message.
@@ -646,9 +643,9 @@ public function rtmedia_api_process_like_media_request() {
 			}
 
 			if ( $increase ) {
-				$like_count_old ++;
+				$like_count_old++;
 			} elseif ( ! $increase ) {
-				$like_count_old --;
+				$like_count_old--;
 			}
 
 			if ( $like_count_old < 0 ) {
@@ -691,14 +688,21 @@ public function rtmedia_api_process_get_rtmedia_comments_request() {
 		global $wpdb;
 		if ( empty( $media_id ) ) {
 			$user_data   = $this->rtmediajsonapifunction->rtmedia_api_user_data_from_id( $this->user_id );
-			$comments    = $wpdb->get_results( $wpdb->prepare( "SELECT * FROM {$wpdb->comments} WHERE user_id = %d limit 100", $this->user_id ), ARRAY_A );
+
+			$comments = get_comments(
+				array(
+					'user_id' => $this->user_id,
+					'number'  => 100,
+				)
+			);
+
 			$my_comments = array();
 			if ( ! empty( $comments ) ) {
 				foreach ( $comments as $comment ) {
 					$my_comments['comments'][] = array(
-						'comment_ID'      => $comment['comment_ID'],
-						'comment_content' => $comment['comment_content'],
-						'media_id'        => $comment['comment_post_ID'],
+						'comment_ID'      => $comment->comment_ID,
+						'comment_content' => $comment->comment_content,
+						'media_id'        => $comment->comment_post_ID,
 					);
 				}
 				$my_comments['user'] = array(
@@ -806,7 +810,14 @@ public function rtmedia_api_process_remove_comment_request() {
 		}
 
 		$id       = rtmedia_media_id( $media_id );
-		$comments = $wpdb->get_results( $wpdb->prepare( "SELECT * FROM {$wpdb->comments} WHERE comment_ID = %d AND comment_post_ID = %d AND user_id = %d limit 100", $comment_id, $id, $this->user_id ), ARRAY_A );
+		$comments = get_comments(
+			array(
+				'comment_ID'      => $comment_id,
+				'comment_post_ID' => $id,
+				'user_id'         => $this->user_id,
+				'counts'          => true,
+			)
+		);
 
 		// Delete Comment.
 		if ( ! empty( $comments ) ) {
@@ -1032,7 +1043,7 @@ public function rtmedia_api_process_update_profile_request() {
 		$ec_profile_updated  = 120002;
 		$msg_profile_updated = esc_html__( 'profile updated', 'buddypress-media' );
 
-		for ( $i = 1; $i <= 12; $i ++ ) {
+		for ( $i = 1; $i <= 12; $i++ ) {
 			$field_str          = 'field_';
 			$field_str         .= $i;
 			$field_str_privacy  = $field_str . '_privacy';
@@ -1067,11 +1078,11 @@ public function rtmedia_api_process_update_avatar_request() {
 		$ec_avatar_updated  = 130003;
 		$msg_avatar_updated = esc_html__( 'avatar updated', 'buddypress-media' );
 
-		if ( empty( $_FILES['file'] ) ) {
+		if ( empty( $_FILES['file'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing -- Not needed since we are only checking if the value exists.
 			wp_send_json( $this->rtmedia_api_response_object( 'FALSE', $ec_no_file, $msg_no_file ) );
 		}
 
-		$uploaded = bp_core_avatar_handle_upload( $_FILES, 'xprofile_avatar_upload_dir' );
+		$uploaded = bp_core_avatar_handle_upload( $_FILES, 'xprofile_avatar_upload_dir' ); // phpcs:ignore WordPress.Security.NonceVerification.Missing -- It is verified by the external plugin function.
 		if ( ! $uploaded ) {
 			wp_send_json( $this->rtmedia_api_response_object( 'FALSE', $ec_invalid_image, $msg_invalid_image ) );
 		} else {
@@ -1104,27 +1115,26 @@ public function rtmedia_api_process_rtmedia_upload_media_request() {
 		$ec_look_updated  = 140004;
 		$msg_look_updated = esc_html__( 'media updated', 'buddypress-media' );
 
-		$image_type   = sanitize_text_field( filter_input( INPUT_POST, 'image_type', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
-		$mime_type    = "";
+		$image_type = sanitize_text_field( filter_input( INPUT_POST, 'image_type', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
+		$mime_type  = '';
 
 		if ( in_array( $image_type, array( 'jpeg', 'jpg' ), true ) ) {
 			$mime_type = 'image/jpeg';
-		}
-		else if ( 'png' === $image_type ) {
+		} elseif ( 'png' === $image_type ) {
 			$mime_type = 'image/png';
 		} else {
 			wp_send_json( $this->rtmedia_api_response_object( 'FALSE', $ec_invalid_file_type, $msg_invalid_file_type ) );
 		}
 
-		$title        = sanitize_title( filter_input( INPUT_POST, 'title', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
-		$description  = sanitize_text_field( filter_input( INPUT_POST, 'description', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
+		$title       = sanitize_title( filter_input( INPUT_POST, 'title', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
+		$description = sanitize_text_field( filter_input( INPUT_POST, 'description', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
 
 		$rtmedia_file = sanitize_text_field( filter_input( INPUT_POST, 'rtmedia_file', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
 
 		$updated       = false;
 		$uploaded_look = false;
 
-		if ( empty( $rtmedia_file ) && empty( $_FILES['rtmedia_file'] ) ) {
+		if ( empty( $rtmedia_file ) && empty( $_FILES['rtmedia_file'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing -- We are only checking presence of a data.
 			wp_send_json( $this->rtmedia_api_response_object( 'FALSE', $ec_no_file, $msg_no_file ) );
 		}
 
@@ -1139,19 +1149,26 @@ public function rtmedia_api_process_rtmedia_upload_media_request() {
 			}
 		}
 
-		if ( ! empty( $_FILES['rtmedia_file'] ) ) {
-			// phpcs:disable Squiz.PHP.DisallowMultipleAssignments.Found, WordPress.Security.NonceVerification.NoNonceVerification
+		if ( ! empty( $_FILES['rtmedia_file'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Recommended, WordPress.Security.NonceVerification.Missing -- We are only checking presence of a data.
+			// phpcs:disable Squiz.PHP.DisallowMultipleAssignments.Found, WordPress.Security.NonceVerification.Recommended
 			$_POST['rtmedia_upload_nonce']       = $_REQUEST['rtmedia_upload_nonce'] = wp_create_nonce( 'rtmedia_upload_nonce' );
 			$_POST['rtmedia_simple_file_upload'] = $_REQUEST['rtmedia_simple_file_upload'] = 1;
-			$_POST['context']                    = $_REQUEST['context'] = ! empty( $_REQUEST['context'] ) ? wp_unslash( $_REQUEST['context'] ) : 'profile';
+			$_POST['context']                    = $_REQUEST['context'] = ! empty( $_REQUEST['context'] ) ? sanitize_text_field( wp_unslash( $_REQUEST['context'] ) ) : 'profile';
 			$_POST['context_id']                 = $_REQUEST['context_id'] = ! empty( $_REQUEST['context_id'] ) ? absint( $_REQUEST['context_id'] ) : $this->user_id;
 			$_POST['mode']                       = $_REQUEST['mode'] = 'file_upload';
 			$_POST['media_author']               = $_REQUEST['media_author'] = $this->user_id;
 			$upload                              = new RTMediaUploadEndpoint();
-			// phpcs:enable Squiz.PHP.DisallowMultipleAssignments.Found, WordPress.Security.NonceVerification.NoNonceVerification
+			// phpcs:enable Squiz.PHP.DisallowMultipleAssignments.Found, WordPress.Security.NonceVerification.Recommended
 			// todo refactor below function so it takes param also and use if passed else use POST request.
 			$uploaded_look = $upload->template_redirect();
 		} else {
+			if ( ! function_exists( 'WP_Filesystem' ) ) {
+				require_once ABSPATH . 'wp-admin/includes/file.php';
+			}
+			global $wp_filesystem;
+			if ( ! $wp_filesystem ) {
+				WP_Filesystem();
+			}
 
 			// Process rtmedia_file.
 			$img          = $rtmedia_file;
@@ -1160,7 +1177,15 @@ public function rtmedia_api_process_rtmedia_upload_media_request() {
 			$rtmedia_file = base64_decode( $img ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode
 
 			// check if file is valid image.
-			$actual_file_info = getimagesizefromstring( $rtmedia_file );
+			if ( function_exists( 'getimagesizefromstring' ) ) {
+				$actual_file_info = getimagesizefromstring( $rtmedia_file ); // phpcs:ignore PHPCompatibility.FunctionUse.NewFunctions.getimagesizefromstringFound -- Added fallback for PHP < 5.4.
+			} else {
+				// Fallback for PHP < 5.4 using WP_Filesystem.
+				$tmp_file = trailingslashit( sys_get_temp_dir() ) . uniqid( 'img_', true );
+				$wp_filesystem->put_contents( $tmp_file, $rtmedia_file, FS_CHMOD_FILE );
+				$actual_file_info = getimagesize( $tmp_file );
+				$wp_filesystem->delete( $tmp_file );
+			}
 
 			if ( ! $actual_file_info || ! isset( $actual_file_info['mime'] ) || ! in_array( $actual_file_info['mime'], array( 'image/jpeg', 'image/png' ), true ) ) {
 				wp_send_json( $this->rtmedia_api_response_object( 'FALSE', $ec_invalid_image, $msg_invalid_image ) );
@@ -1170,7 +1195,7 @@ public function rtmedia_api_process_rtmedia_upload_media_request() {
 
 			$tmp_name = UPLOAD_DIR_LOOK . $title;
 			$file     = $tmp_name . '.' . $image_type;
-			$success  = file_put_contents( $file, $rtmedia_file ); // phpcs:ignore WordPress.WP.AlternativeFunctions.file_system_read_file_put_contents
+			$success  = $wp_filesystem->put_contents( $file, $rtmedia_file, FS_CHMOD_FILE );
 
 			if ( ! $success ) {
 				wp_send_json( $this->rtmedia_api_response_object( 'FALSE', $ec_invalid_image, $msg_invalid_image ) );
@@ -1251,6 +1276,7 @@ public function rtmedia_api_process_rtmedia_upload_media_request() {
 				$obj_activity = new RTMediaActivity( $update_activity_media, $privacy, false );
 
 				global $wpdb, $bp;
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 				$updated = $wpdb->update(
 					$bp->activity->table_name,
 					array(
@@ -1449,7 +1475,6 @@ public function rtmedia_api_process_logout_request() {
 		} else {
 			wp_send_json( $this->rtmedia_api_response_object( 'FALSE', $this->ec_server_error, $this->msg_server_error ) );
 		}
-
 	}
 
 	/**
@@ -1473,39 +1498,4 @@ public function api_new_media_upload_dir( $args ) {
 			return $args;
 		}
 	}
-
-	/**
-	 * Registers the rest_pre_dispatch filter during rest_api_init.
-	 */
-	public function register_rest_pre_dispatch_filter() {
-		add_filter( 'rest_pre_dispatch', [ $this, 'handle_rest_pre_dispatch' ], 10, 3 );
-	}
-
-	/**
-	 * Callback for rest_pre_dispatch filter.
-	 *
-	 * @param mixed           $result  Result to return instead of the request. Default null to continue with request.
-	 * @param WP_REST_Server  $server  Server instance.
-	 * @param WP_REST_Request $request Request object.
-	 *
-	 * @return mixed Modified result or original $result.
-	 */
-	public function handle_rest_pre_dispatch( $result, $server, $request ) {
-		$route  = $request->get_route();
-		$method = $request->get_method();
-
-		if ( 'GET' === $method && preg_match( '#^/wp/v2/media/(\d+)$#', $route, $matches ) ) {
-			$media_id = (int) $matches[1];
-			$post     = get_post( $media_id );
-
-			if ( $post && 'attachment' === $post->post_type ) {
-				$controller = new WP_REST_Attachments_Controller( 'attachment' );
-				$response   = $controller->prepare_item_for_response( $post, $request );
-
-				return rest_ensure_response( $response );
-			}
-		}
-
-		return $result;
-	}
 }
diff --git a/app/main/controllers/api/RTMediaJsonApiFunctions.php b/app/main/controllers/api/RTMediaJsonApiFunctions.php
index 4ca119b76..7c75462ce 100644
--- a/app/main/controllers/api/RTMediaJsonApiFunctions.php
+++ b/app/main/controllers/api/RTMediaJsonApiFunctions.php
@@ -346,23 +346,28 @@ public function rtmedia_api_get_media_comments( $media_id ) {
 			wp_send_json( $rtmjsonapi->rtmedia_api_response_object( 'FALSE', $rtmjsonapi->ec_invalid_media_id, $rtmjsonapi->msg_invalid_media_id ) );
 		}
 
-		$comments = $wpdb->get_results( $wpdb->prepare( "SELECT * FROM {$wpdb->comments} WHERE comment_post_ID = %d limit 100", $id ), ARRAY_A );
+		$comments = get_comments(
+			array(
+				'comment_post_ID' => $id,
+				'number'          => 100,
+			)
+		);
 
 		$media_comments = array();
 		if ( ! empty( $comments ) ) {
 
 			foreach ( $comments as $comment ) {
 				$media_comments['comments'][] = array(
-					'comment_ID'      => $comment['comment_ID'],
-					'comment_content' => $comment['comment_content'],
-					'user_id'         => $comment['user_id'],
+					'comment_ID'      => $comment->comment_ID,
+					'comment_content' => $comment->comment_content,
+					'user_id'         => $comment->user_id,
 				);
 
-				if ( ! array_key_exists( $comment['user_id'], $media_comments['user'] ) ) {
+				if ( ! array_key_exists( $comment->user_id, $media_comments['user'] ) ) {
 
-					$user_data = $this->rtmedia_api_user_data_from_id( $comment['user_id'] );
+					$user_data = $this->rtmedia_api_user_data_from_id( $comment->user_id );
 
-					$media_comments['user'][ $comment['user_id'] ] = array(
+					$media_comments['user'][ $comment->user_id ] = array(
 						'name'   => $user_data['name'],
 						'avatar' => $user_data['avatar'],
 					);
diff --git a/app/main/controllers/group/RTMediaBuddyPressGroupActivity.php b/app/main/controllers/group/RTMediaBuddyPressGroupActivity.php
index dc467a74e..2a5fa8422 100644
--- a/app/main/controllers/group/RTMediaBuddyPressGroupActivity.php
+++ b/app/main/controllers/group/RTMediaBuddyPressGroupActivity.php
@@ -32,8 +32,7 @@ public function bp_before_groups_post_update_parse_args( $args ) {
 		// if content is non-breaking space then set it to empty.
 		if ( isset( $args['content'] ) && '' === $args['content'] ) {
 
-			// Nonce verification is not required here as it is already done in previously.
-			if ( ! empty( $_POST['rtMedia_attached_files'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing
+			if ( ! empty( $_POST['rtMedia_attached_files'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing -- Not needed since we  are only checking if the field exists and it is done already.
 				$args['content'] = '&nbsp;';
 			}
 		}
diff --git a/app/main/controllers/group/RTMediaGroup.php b/app/main/controllers/group/RTMediaGroup.php
index 0e0af69d8..694f77317 100644
--- a/app/main/controllers/group/RTMediaGroup.php
+++ b/app/main/controllers/group/RTMediaGroup.php
@@ -42,7 +42,6 @@ public function __construct() {
 		if ( function_exists( 'bp_is_active' ) && bp_is_active( 'groups' ) && class_exists( 'BP_Group_Extension' ) ) {
 			bp_register_group_extension( 'RTMediaGroupExtension' );
 		}
-
 	}
 
 	/**
diff --git a/app/main/controllers/group/RTMediaGroupExtension.php b/app/main/controllers/group/RTMediaGroupExtension.php
index f3e61461a..3c0bd5fc7 100644
--- a/app/main/controllers/group/RTMediaGroupExtension.php
+++ b/app/main/controllers/group/RTMediaGroupExtension.php
@@ -75,6 +75,31 @@ public function create_screen( $group_id = null ) {
 			wp_nonce_field( 'groups_create_save_' . $this->slug );
 		}
 
+		/**
+		 * Deep sanitize post data.
+		 *
+		 * @param array $data Data array.
+		 *
+		 * @return array
+		 */
+		public function rtmedia_deep_sanitize_post( $data ) {
+			$sanitized = array();
+
+			foreach ( $data as $key => $value ) {
+				if ( is_array( $value ) ) {
+					$sanitized[ $key ] = $this->rtmedia_deep_sanitize_post( $value );
+				} elseif ( is_numeric( $value ) ) {
+					$sanitized[ $key ] = absint( $value );
+				} elseif ( false !== filter_var( $value, FILTER_VALIDATE_URL ) ) {
+					$sanitized[ $key ] = esc_url_raw( $value );
+				} else {
+					$sanitized[ $key ] = sanitize_text_field( $value );
+				}
+			}
+
+			return $sanitized;
+		}
+
 		/**
 		 * Save group media details.
 		 *
@@ -104,7 +129,8 @@ public function create_screen_save( $group_id = null ) {
 				groups_update_groupmeta( $bp->groups->new_group_id, 'rtmp_create_playlist_control_level', $rtmp_playlist_creation_control );
 			}
 
-			do_action( 'rtmedia_create_save_group_media_settings', $_POST );
+			$sanitized_post = $this->rtmedia_deep_sanitize_post( $_POST );
+			do_action( 'rtmedia_create_save_group_media_settings', $sanitized_post );
 		}
 
 		/**
@@ -166,16 +192,18 @@ public function edit_screen_save( $group_id = null ) {
 			check_admin_referer( 'groups_edit_save_' . $this->slug );
 
 			if ( isset( $rt_album_creation_control ) && ! empty( $rt_album_creation_control ) ) {
-				$success = groups_update_groupmeta( bp_get_current_group_id(), 'rt_media_group_control_level', $rt_album_creation_control );
-				do_action( 'rtmedia_edit_save_group_media_settings', $_POST );
+				$success        = groups_update_groupmeta( bp_get_current_group_id(), 'rt_media_group_control_level', $rt_album_creation_control );
+				$sanitized_post = $this->rtmedia_deep_sanitize_post( $_POST );
+				do_action( 'rtmedia_edit_save_group_media_settings', $sanitized_post );
 				$success = true;
 			} else {
 				$success = false;
 			}
 
 			if ( isset( $rtmp_playlist_creation_control ) && ! empty( $rtmp_playlist_creation_control ) ) {
-				$success = groups_update_groupmeta( bp_get_current_group_id(), 'rtmp_create_playlist_control_level', $rtmp_playlist_creation_control );
-				do_action( 'rtmedia_edit_save_group_media_settings', $_POST );
+				$success        = groups_update_groupmeta( bp_get_current_group_id(), 'rtmp_create_playlist_control_level', $rtmp_playlist_creation_control );
+				$sanitized_post = $this->rtmedia_deep_sanitize_post( $_POST );
+				do_action( 'rtmedia_edit_save_group_media_settings', $sanitized_post );
 				$success = true;
 			}
 
diff --git a/app/main/controllers/media/RTMediaAlbum.php b/app/main/controllers/media/RTMediaAlbum.php
index 0e4c8efff..9dc010213 100755
--- a/app/main/controllers/media/RTMediaAlbum.php
+++ b/app/main/controllers/media/RTMediaAlbum.php
@@ -207,7 +207,7 @@ public function add( $title = '', $author_id = false, $new = true, $post_id = fa
 			'privacy'      => null,
 		);
 
-		$attributes  = apply_filters( 'rtmedia_before_save_album_attributes', $attributes, $_POST ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing
+		$attributes  = apply_filters( 'rtmedia_before_save_album_attributes', $attributes, $_POST ); // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- It is the responsibility of the calling function to implement nonce verification.
 		$rtmedia_id  = $this->media->insert_album( $attributes );
 		$rtmedia_nav = new RTMediaNav();
 		$media_count = $rtmedia_nav->refresh_counts(
@@ -300,7 +300,6 @@ public function save_globals( $album_ids = false ) {
 
 		$albums = array_merge( $albums, $album_ids );
 		rtmedia_update_site_option( 'rtmedia-global-albums', $albums );
-
 	}
 
 	/**
diff --git a/app/main/controllers/media/RTMediaComment.php b/app/main/controllers/media/RTMediaComment.php
index b3a59313c..86254bf96 100755
--- a/app/main/controllers/media/RTMediaComment.php
+++ b/app/main/controllers/media/RTMediaComment.php
@@ -57,7 +57,6 @@ public function get_current_id() {
 		global $current_user;
 
 		return $current_user->ID;
-
 	}
 
 	/**
@@ -71,7 +70,6 @@ public function get_current_author() {
 		global $current_user;
 
 		return $current_user->user_login;
-
 	}
 
 	/**
diff --git a/app/main/controllers/media/RTMediaFeatured.php b/app/main/controllers/media/RTMediaFeatured.php
index c37675b46..f624eca3d 100755
--- a/app/main/controllers/media/RTMediaFeatured.php
+++ b/app/main/controllers/media/RTMediaFeatured.php
@@ -177,7 +177,8 @@ public function generate_featured_size( $media_id ) {
 	public function media_exists( $id ) {
 		global $wpdb;
 
-		$post_exists = $wpdb->get_row( $wpdb->prepare( "SELECT * FROM {$wpdb->posts} WHERE id = %d", $id ), 'ARRAY_A' );
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query is used for performance.
+		$post_exists = $wpdb->get_row( $wpdb->prepare( "SELECT ID FROM {$wpdb->posts} WHERE ID = %d", $id ), 'ARRAY_A' );
 
 		if ( $post_exists ) {
 			return true;
@@ -317,7 +318,8 @@ public function featured_button_filter_nonce( $button ) {
  *
  * @param bool|int $user_id User ID.
  */
-function rtmedia_featured( $user_id = false ) {
+function rtmedia_featured( $user_id = false ) { // phpcs:ignore Universal.Files.SeparateFunctionsFromOO.Mixed -- Function might be used outside the class.
+	// todo: Refactor the code to move the function inside the class.
 	echo wp_kses( rtmedia_get_featured( $user_id ), RTMedia::expanded_allowed_tags() );
 }
 
@@ -328,7 +330,8 @@ function rtmedia_featured( $user_id = false ) {
  *
  * @return bool|mixed|void
  */
-function rtmedia_get_featured( $user_id = false ) {
+function rtmedia_get_featured( $user_id = false ) { // phpcs:ignore Universal.Files.SeparateFunctionsFromOO.Mixed -- Function used outside the class.
+	// todo: Refactor the code to move the function inside the class.
 	$featured = new RTMediaFeatured( $user_id, false );
 
 	return $featured->content();
diff --git a/app/main/controllers/media/RTMediaGalleryItemAction.php b/app/main/controllers/media/RTMediaGalleryItemAction.php
index b579027c8..c8f01fbb9 100644
--- a/app/main/controllers/media/RTMediaGalleryItemAction.php
+++ b/app/main/controllers/media/RTMediaGalleryItemAction.php
@@ -57,7 +57,6 @@ public function add_class_to_rtmedia_gallery( $classes ) {
 		}
 
 		return $classes;
-
 	}
 
 	/**
diff --git a/app/main/controllers/media/RTMediaGroupFeatured.php b/app/main/controllers/media/RTMediaGroupFeatured.php
index e80bbd7a6..1a6634e1f 100644
--- a/app/main/controllers/media/RTMediaGroupFeatured.php
+++ b/app/main/controllers/media/RTMediaGroupFeatured.php
@@ -197,7 +197,9 @@ public function generate_featured_size( $media_id ) {
 	 */
 	public function media_exists( $id ) {
 		global $wpdb;
-		$post_exists = $wpdb->get_row( $wpdb->prepare( "SELECT * FROM {$wpdb->posts} WHERE id = %d", $id ), 'ARRAY_A' );
+		// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching, WordPress.DB.PreparedSQL.NotPrepared -- Direct query is used for performance.
+		$post_exists = $wpdb->get_row( $wpdb->prepare( "SELECT ID FROM {$wpdb->posts} WHERE ID = %d", $id ), 'ARRAY_A' );
+
 		if ( $post_exists ) {
 			return true;
 		} else {
@@ -317,7 +319,7 @@ public function process() {
  *
  * @param bool|int $group_id Group id.
  */
-function rtmedia_group_featured( $group_id = false ) {
+function rtmedia_group_featured( $group_id = false ) { // phpcs:ignore Universal.Files.SeparateFunctionsFromOO.Mixed -- Function might be used outside the class.
 	echo wp_kses( rtmedia_get_group_featured( $group_id ), RTMedia::expanded_allowed_tags() );
 }
 
@@ -328,7 +330,7 @@ function rtmedia_group_featured( $group_id = false ) {
  *
  * @return bool|mixed|void
  */
-function rtmedia_get_group_featured( $group_id = false ) {
+function rtmedia_get_group_featured( $group_id = false ) { // phpcs:ignore Universal.Files.SeparateFunctionsFromOO.Mixed -- Function used outside the class.
 	$featured = new RTMediaGroupFeatured( $group_id, false );
 
 	return $featured->content();
diff --git a/app/main/controllers/media/RTMediaLike.php b/app/main/controllers/media/RTMediaLike.php
index ff3435eb8..e5515fcac 100755
--- a/app/main/controllers/media/RTMediaLike.php
+++ b/app/main/controllers/media/RTMediaLike.php
@@ -181,11 +181,11 @@ public function process() {
 
 		$actions = intval( $actions[0]->{$actionwa} );
 		if ( true === $this->increase ) {
-			$actions ++;
+			$actions++;
 			$return['next'] = apply_filters( 'rtmedia_' . $this->action . '_undo_label_text', $this->undo_label );
 			$return['prev'] = apply_filters( 'rtmedia_' . $this->action . '_label_text', $this->label );
 		} else {
-			$actions --;
+			$actions--;
 			$return['next'] = apply_filters( 'rtmedia_' . $this->action . '_label_text', $this->label );
 			$return['prev'] = apply_filters( 'rtmedia_' . $this->action . '_undo_label_text', $this->undo_label );
 		}
@@ -354,18 +354,16 @@ public function is_liked( $media_id = false, $interactor = false ) {
 		$like_media = get_user_meta( $interactor, 'rtmedia_liked_media', true );
 		if ( $this->is_like_migrated( $media_id, $interactor ) ) {
 			return $this->get_like_value( $media_id, $interactor );
-		} else {
+		} elseif ( strpos( ',' . $like_media . ',', ',' . $media_id . ',' ) === false ) {
 
-			if ( strpos( ',' . $like_media . ',', ',' . $media_id . ',' ) === false ) {
 				$this->increase = true;
 
 				return false;
-			} else {
-				$this->migrate_likes( $like_media );
-				$this->increase = false;
+		} else {
+			$this->migrate_likes( $like_media );
+			$this->increase = false;
 
-				return true;
-			}
+			return true;
 		}
 	}
 
diff --git a/app/main/controllers/media/RTMediaMedia.php b/app/main/controllers/media/RTMediaMedia.php
index ae2e44547..85f7c2ced 100755
--- a/app/main/controllers/media/RTMediaMedia.php
+++ b/app/main/controllers/media/RTMediaMedia.php
@@ -407,6 +407,8 @@ public function delete( $id, $core = false, $delete_activity = true ) {
 
 						$obj_activity = new RTMediaActivity( $activity_media );
 						global $wpdb, $bp;
+
+						// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 						$wpdb->update(
 							$bp->activity->table_name,
 							array(
@@ -415,10 +417,8 @@ public function delete( $id, $core = false, $delete_activity = true ) {
 							),
 							array( 'id' => $media[0]->activity_id )
 						);
-					} else {
-						if ( isset( $media[0] ) && isset( $media[0]->activity_id ) ) {
+					} elseif ( isset( $media[0] ) && isset( $media[0]->activity_id ) ) {
 							bp_activity_delete_by_activity_id( $media[0]->activity_id );
-						}
 					}
 
 					// Deleting like and comment activity for media.
@@ -529,7 +529,12 @@ public function move( $media_id, $album_id ) {
 
 		global $wpdb;
 		// update the post_parent value in wp_post table.
-		$status = $wpdb->update( $wpdb->posts, array( 'post_parent' => $album_id ), array( 'ID' => $media_id ) );
+		$status = wp_update_post(
+			array(
+				'ID' => $media_id,
+				'post_parent' => $album_id,
+			)
+		);
 
 		if ( is_wp_error( $status ) || 0 === $status ) {
 			return false;
@@ -552,7 +557,6 @@ public function move( $media_id, $album_id ) {
 	 *  Imports attachment as media
 	 */
 	public function import_attachment() {
-
 	}
 
 	/**
@@ -655,7 +659,14 @@ public function insert_attachment( $attachments, $file_object ) {
 				if ( function_exists( 'wp_delete_file' ) ) {  // wp_delete_file is introduced in WordPress 4.2.
 					wp_delete_file( $file );
 				} else {
-					unlink( $file );
+					if ( ! function_exists( 'WP_Filesystem' ) ) {
+						require_once ABSPATH . 'wp-admin/includes/file.php';
+					}
+					global $wp_filesystem;
+					if ( ! $wp_filesystem ) {
+						WP_Filesystem();
+					}
+					$wp_filesystem->delete( $file );
 				}
 
 				throw new Exception( esc_html__( 'Error creating attachment for the media file, please try again', 'buddypress-media' ) );
diff --git a/app/main/controllers/media/RTMediaMeta.php b/app/main/controllers/media/RTMediaMeta.php
index 97f1f59a3..de02e5692 100755
--- a/app/main/controllers/media/RTMediaMeta.php
+++ b/app/main/controllers/media/RTMediaMeta.php
@@ -134,23 +134,21 @@ public function update_meta( $id = false, $key = false, $value = false, $duplica
 					'meta_value' => $value,
 				)
 			);
-		} else {
-			if ( false !== $this->get_single_meta( $id, $key ) ) {
+		} elseif ( false !== $this->get_single_meta( $id, $key ) ) {
 				$meta       = array( 'meta_value' => $value );
 				$where      = array(
 					'media_id' => $id,
 					'meta_key' => $key,
 				);
 				$media_meta = $this->model->update( $meta, $where );
-			} else {
-				$media_meta = $this->model->insert(
-					array(
-						'media_id'   => $id,
-						'meta_key'   => $key,
-						'meta_value' => $value,
-					)
-				);
-			}
+		} else {
+			$media_meta = $this->model->insert(
+				array(
+					'media_id'   => $id,
+					'meta_key'   => $key,
+					'meta_value' => $value,
+				)
+			);
 		}
 
 		return $media_meta;
diff --git a/app/main/controllers/media/RTMediaUserInteraction.php b/app/main/controllers/media/RTMediaUserInteraction.php
index 4b7d7aacd..e22d757c5 100755
--- a/app/main/controllers/media/RTMediaUserInteraction.php
+++ b/app/main/controllers/media/RTMediaUserInteraction.php
@@ -211,7 +211,6 @@ public function init() {
 		$this->set_plural();
 		$this->set_media();
 		$this->set_interactor();
-
 	}
 
 	/**
@@ -250,7 +249,6 @@ public function set_media() {
 				$this->owner = $this->media->media_author;
 			}
 		}
-
 	}
 
 	/**
@@ -317,10 +315,8 @@ public function is_clickable() {
 			if ( $this->undoable ) {
 				$clickable = true;
 			}
-		} else {
-			if ( $this->undoable ) {
+		} elseif ( $this->undoable ) {
 				$clickable = true;
-			}
 		}
 
 		return $clickable;
@@ -330,7 +326,6 @@ public function is_clickable() {
 	 * Before rendering button.
 	 */
 	public function before_render() {
-
 	}
 
 	/**
diff --git a/app/main/controllers/media/RTMediaViewCount.php b/app/main/controllers/media/RTMediaViewCount.php
index ad69c6b9b..a3e64265d 100644
--- a/app/main/controllers/media/RTMediaViewCount.php
+++ b/app/main/controllers/media/RTMediaViewCount.php
@@ -66,7 +66,7 @@ public function process() {
 			$results       = $rtmediainteraction->get_row( $user_id, $media_id, $action );
 			$row           = $results[0];
 			$curr_value    = $row->value;
-			$update_data   = array( 'value' => ++ $curr_value );
+			$update_data   = array( 'value' => ++$curr_value );
 			$where_columns = array(
 				'user_id'  => $user_id,
 				'media_id' => $media_id,
diff --git a/app/main/controllers/shortcodes/RTMediaGalleryShortcode.php b/app/main/controllers/shortcodes/RTMediaGalleryShortcode.php
index fe3e94877..e2f8c63da 100755
--- a/app/main/controllers/shortcodes/RTMediaGalleryShortcode.php
+++ b/app/main/controllers/shortcodes/RTMediaGalleryShortcode.php
@@ -78,10 +78,12 @@ public static function register_scripts() {
 				array(
 					'action'   => 'rtmedia_get_template',
 					'template' => 'album-gallery-item',
+					'wp_nonce' => wp_create_nonce( 'rtmedia_album_gallery' ),
 				)
 			);
 
 			$template_url = esc_url( add_query_arg( $album_template_args, admin_url( 'admin-ajax.php' ) ), null, '' );
+
 		} else {
 
 			$media_template_args = apply_filters(
@@ -89,6 +91,7 @@ public static function register_scripts() {
 				array(
 					'action'   => 'rtmedia_get_template',
 					'template' => apply_filters( 'rtmedia_backbone_template_filter', 'media-gallery-item' ),
+					'wp_nonce' => wp_create_nonce( 'rtmedia_album_gallery' ),
 				)
 			);
 
@@ -99,6 +102,21 @@ public static function register_scripts() {
 		$request_uri = rtm_get_server_var( 'REQUEST_URI', 'FILTER_SANITIZE_URL' );
 		$url         = rtmedia_get_upload_url( $request_uri );
 
+		// Get all allowed media types from rtMedia.
+		$allowed_types = rtmedia_get_allowed_types();
+		$allowed_extensions = get_rtmedia_allowed_upload_type(); // Default fallback.
+
+		// Dynamically detect current media type based on the request URI.
+		if ( false !== strpos( $request_uri, '/photo/' ) && ! empty( $allowed_types['photo']['extn'] ) ) {
+			$allowed_extensions = implode( ',', $allowed_types['photo']['extn'] );
+		} elseif ( false !== strpos( $request_uri, '/video/' ) && ! empty( $allowed_types['video']['extn'] ) ) {
+			$allowed_extensions = implode( ',', $allowed_types['video']['extn'] );
+		} elseif ( false !== strpos( $request_uri, '/music/' ) && ! empty( $allowed_types['music']['extn'] ) ) {
+			$allowed_extensions = implode( ',', $allowed_types['music']['extn'] );
+		} elseif ( false !== strpos( $request_uri, '/document/' ) && ! empty( $allowed_types['document']['extn'] ) ) {
+			$allowed_extensions = implode( ',', $allowed_types['document']['extn'] );
+		}
+
 		$upload_max_size = ( wp_max_upload_size() ) / ( 1024 * 1024 ) . 'M';
 		$params          = array(
 			'url'                 => $url,
@@ -111,7 +129,7 @@ public static function register_scripts() {
 				array(
 					array(
 						'title'      => esc_html__( 'Media Files', 'buddypress-media' ),
-						'extensions' => get_rtmedia_allowed_upload_type(),
+						'extensions' => $allowed_extensions,
 					),
 				)
 			),
@@ -230,6 +248,7 @@ public static function render( $attr ) {
 					array(
 						'action'   => 'rtmedia_get_template',
 						'template' => 'album-gallery-item',
+						'wp_nonce' => wp_create_nonce( 'rtmedia_album_gallery' ),
 					)
 				);
 
@@ -241,6 +260,7 @@ public static function render( $attr ) {
 					array(
 						'action'   => 'rtmedia_get_template',
 						'template' => apply_filters( 'rtmedia_backbone_template_filter', 'media-gallery-item' ),
+						'wp_nonce' => wp_create_nonce( 'rtmedia_album_gallery' ),
 					)
 				);
 
diff --git a/app/main/controllers/shortcodes/RTMediaUploadShortcode.php b/app/main/controllers/shortcodes/RTMediaUploadShortcode.php
index e01b3d75f..82668c023 100755
--- a/app/main/controllers/shortcodes/RTMediaUploadShortcode.php
+++ b/app/main/controllers/shortcodes/RTMediaUploadShortcode.php
@@ -55,7 +55,7 @@ public static function display_allowed() {
 		$media_enabled = ( is_rtmedia_upload_music_enabled() || is_rtmedia_upload_photo_enabled()
 			|| is_rtmedia_upload_video_enabled() || is_rtmedia_upload_document_enabled()
 			|| is_rtmedia_upload_other_enabled() );
-		$flag          = ( ! (is_post_type_archive() || is_author() ) )
+		$flag          = ( ! ( is_post_type_archive() || is_author() ) )
 		&& is_user_logged_in()
 		&& ( $media_enabled )
 		// Added condition to disable upload when media is disabled in profile/group but user visits media tab.
diff --git a/app/main/controllers/template/RTMediaTemplate.php b/app/main/controllers/template/RTMediaTemplate.php
index 681f28dc4..d7bce32b8 100755
--- a/app/main/controllers/template/RTMediaTemplate.php
+++ b/app/main/controllers/template/RTMediaTemplate.php
@@ -324,8 +324,8 @@ public function check_return_edit() {
 		&& isset( $rtmedia_query->action_query )
 		&& isset( $rtmedia_query->action_query->action )
 		&& 'edit' === $rtmedia_query->action_query->action
-		&& count( $_POST ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing, WordPress.Security.NonceVerification.NoNonceVerification
-		$this->save_edit();
+		&& count( $_POST ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing, WordPress.Security.NonceVerification.NoNonceVerification -- We are only fetching the count of elements in $_POST so nonce verification is not needed.
+			$this->save_edit();
 		}
 
 		return $this->get_default_template();
@@ -375,12 +375,12 @@ public function save_single_edit() {
 				}
 			}
 
-			$data       = rtmedia_sanitize_object( $_POST, $data_array );
-			$media      = new RTMediaMedia();
+			$data  = rtmedia_sanitize_object( $_POST, $data_array ); // Properly Sanitized.
+			$media = new RTMediaMedia();
 			if ( isset( $rtmedia_query->media[0]->media_id ) ) {
 				$image_path = get_attached_file( $rtmedia_query->media[0]->media_id );
 			} else {
-				$image_path = ''; // or handle the error as needed
+				$image_path = ''; // or handle the error as needed.
 			}
 			if ( isset( $rtmedia_query->media[0] ) && 'photo' === $rtmedia_query->media[0]->media_type ) {
 				$image_meta_data = wp_generate_attachment_metadata( $rtmedia_query->media[0]->media_id, $image_path );
@@ -391,7 +391,7 @@ public function save_single_edit() {
 			if ( isset( $rtmedia_query->action_query->id ) && isset( $rtmedia_query->media[0]->media_id ) ) {
 				$state = $media->update( $rtmedia_query->action_query->id, $data, $rtmedia_query->media[0]->media_id );
 			} else {
-				$state = false; // or handle the error as needed
+				$state = false; // or handle the error as needed.
 			}
 			$rtmedia_filepath_old = sanitize_text_field( filter_input( INPUT_POST, 'rtmedia-filepath-old', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
 			if ( isset( $rtmedia_filepath_old ) ) {
@@ -540,7 +540,7 @@ public function save_album_edit() {
 			$_selected     = $_selected_arr['selected'];
 			if ( ! empty( $submit ) ) {
 				$data_array = array( 'media_title', 'description', 'privacy' );
-				$data       = rtmedia_sanitize_object( $_POST, $data_array );
+				$data       = rtmedia_sanitize_object( $_POST, $data_array ); // Properly Sanitized.
 				$album      = $model->get_media( array( 'id' => $rtmedia_query->media_query['album_id'] ), false, false );
 				$state      = $media->update( $album[0]->id, $data, $album[0]->media_id );
 
@@ -614,7 +614,7 @@ public function check_return_delete() {
 			return;
 		}
 
-		if ( ! count( $_POST ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing, WordPress.Security.NonceVerification.NoNonceVerification
+		if ( ! count( $_POST ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing, WordPress.Security.NonceVerification.NoNonceVerification -- We are only fetching the count of elements in $_POST so nonce verification is not needed.
 			return;
 		}
 
@@ -666,7 +666,7 @@ public function single_delete() {
 		$nonce = wp_unslash( filter_input( INPUT_POST, 'rtmedia_media_nonce', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
 
 		if ( wp_verify_nonce( $nonce, 'rtmedia_' . $rtmedia_query->media[0]->id ) ) {
-			$id = $_POST;
+			$id = $_POST; // Only used to unset values, no direct database operation. No need to sanitize.
 
 			unset( $id['rtmedia_media_nonce'] );
 			unset( $id['_wp_http_referer'] );
@@ -862,7 +862,7 @@ public function check_return_comments() {
 
 				$comment = new RTMediaComment();
 
-				$attr = $_POST;
+				$attr = $this->rtmedia_deep_sanitize_post( $_POST );
 
 				$media_model = new RTMediaModel();
 				$result      = $media_model->get( array( 'id' => $rtmedia_query->action_query->id ) );
@@ -976,6 +976,33 @@ public function check_delete_comments() {
 		exit;
 	}
 
+	/**
+	 * Deep sanitize post data.
+	 *
+	 * @param array $data Data array.
+	 *
+	 * @return array
+	 */
+	public function rtmedia_deep_sanitize_post( $data ) {
+		$sanitized = array();
+
+		foreach ( $data as $key => $value ) {
+			if ( 'comment_content' === $key ) {
+				$sanitized[ $key ] = wp_kses_post( $value );
+			} elseif ( is_array( $value ) ) {
+				$sanitized[ $key ] = $this->rtmedia_deep_sanitize_post( $value );
+			} elseif ( is_numeric( $value ) ) {
+				$sanitized[ $key ] = absint( $value );
+			} elseif ( false !== filter_var( $value, FILTER_VALIDATE_URL ) ) {
+				$sanitized[ $key ] = esc_url_raw( $value );
+			} else {
+				$sanitized[ $key ] = sanitize_text_field( $value );
+			}
+		}
+
+		return $sanitized;
+	}
+
 	/**
 	 * Delete comment from id.
 	 *
diff --git a/app/main/controllers/template/RTMediaUploadTemplate.php b/app/main/controllers/template/RTMediaUploadTemplate.php
index ae180c2b2..fab892a2e 100755
--- a/app/main/controllers/template/RTMediaUploadTemplate.php
+++ b/app/main/controllers/template/RTMediaUploadTemplate.php
@@ -87,6 +87,7 @@ public function print_script() {
 			$params[ $key ] = html_entity_decode( (string) $value, ENT_QUOTES, 'UTF-8' );
 		}
 
+		// Note: Not sure about the use of below script, so not enqueuing it using wp_enqueue_script().
 		echo "<script type='text/javascript'>\n"; // CDATA and type='text/javascript' is not needed for HTML 5.
 		echo "/* <![CDATA[ */\n";
 		echo 'var bpm_plupload_params = ' . wp_json_encode( $params ) . ";\n";
diff --git a/app/main/controllers/template/rtmedia-actions.php b/app/main/controllers/template/rtmedia-actions.php
index 8bdb8833f..702833301 100644
--- a/app/main/controllers/template/rtmedia-actions.php
+++ b/app/main/controllers/template/rtmedia-actions.php
@@ -46,7 +46,6 @@ function rtmedia_author_actions() {
 			}
 		}
 	}
-
 }
 add_action( 'after_rtmedia_action_buttons', 'rtmedia_author_actions' );
 
@@ -69,7 +68,6 @@ function rtmedia_image_editor_title( $type = 'photo' ) {
 			esc_html__( 'Image', 'buddypress-media' )
 		);
 	}
-
 }
 add_action( 'rtmedia_add_edit_tab_title', 'rtmedia_image_editor_title', 12, 1 );
 
@@ -138,7 +136,6 @@ function rtmedia_add_album_selection_field( $media_type ) {
 		</div>
 		<?php
 	}
-
 }
 add_action( 'rtmedia_add_edit_fields', 'rtmedia_add_album_selection_field', 14, 1 );
 
@@ -178,7 +175,6 @@ function rtmedia_gallery_options() {
 			echo wp_kses( $output, RTMedia::expanded_allowed_tags() );
 		}
 	}
-
 }
 add_action( 'rtmedia_media_gallery_actions', 'rtmedia_gallery_options', 80 );
 add_action( 'rtmedia_album_gallery_actions', 'rtmedia_gallery_options', 80 );
@@ -231,7 +227,6 @@ function rtmedia_merge_album_modal() {
 
 		include RTMEDIA_PATH . 'app/main/templates/merge-album-modal.php';
 	}
-
 }
 add_action( 'rtmedia_before_media_gallery', 'rtmedia_merge_album_modal' );
 add_action( 'rtmedia_before_album_gallery', 'rtmedia_merge_album_modal' );
@@ -250,14 +245,12 @@ function rtmedia_item_select() {
 		if ( isset( $rtmedia_backbone['is_album'] ) && $rtmedia_backbone['is_album'] && isset( $rtmedia_backbone['is_edit_allowed'] ) && $rtmedia_backbone['is_edit_allowed'] ) {
 			echo '<span class="rtm-checkbox-wrap"><input type="checkbox" name="move[]" class="rtmedia-item-selector" value="<%= id %>" /></span>';
 		}
-	} else {
-		if ( is_rtmedia_album() && isset( $rtmedia_query->media_query ) && 'edit' === $rtmedia_query->action_query->action ) {
-			if ( isset( $rtmedia_query->media_query['media_author'] ) && get_current_user_id() === intval( $rtmedia_query->media_query['media_author'] ) ) {
-				printf(
-					'<span class="rtm-checkbox-wrap"><input type="checkbox" class="rtmedia-item-selector" name="selected[]" value="%1$s" /></span>',
-					esc_attr( rtmedia_id() )
-				);
-			}
+	} elseif ( is_rtmedia_album() && isset( $rtmedia_query->media_query ) && 'edit' === $rtmedia_query->action_query->action ) {
+		if ( isset( $rtmedia_query->media_query['media_author'] ) && get_current_user_id() === intval( $rtmedia_query->media_query['media_author'] ) ) {
+			printf(
+				'<span class="rtm-checkbox-wrap"><input type="checkbox" class="rtmedia-item-selector" name="selected[]" value="%1$s" /></span>',
+				esc_attr( rtmedia_id() )
+			);
 		}
 	}
 }
@@ -275,7 +268,6 @@ function rtmedia_album_merge_action( $actions ) {
 	$actions['merge'] = esc_html__( 'Merge', 'buddypress-media' );
 
 	return $actions;
-
 }
 add_action( 'rtmedia_query_actions', 'rtmedia_album_merge_action' );
 
@@ -299,18 +291,15 @@ function add_upload_button() {
 				esc_html( apply_filters( 'rtm_gallery_upload_label', __( 'Upload', 'buddypress-media' ) ) )
 			);
 
-		} else {
-
-			if ( function_exists( 'bp_is_group' ) && bp_is_group() ) {
+		} elseif ( function_exists( 'bp_is_group' ) && bp_is_group() ) {
 
-				if ( can_user_upload_in_group() ) {
+			if ( can_user_upload_in_group() ) {
 
-					printf(
-						'<span class="rtmedia-upload-media-link primary" id="rtm_show_upload_ui" title="%1$s"><i class="dashicons dashicons-upload"></i>%2$s</span>',
-						esc_attr( apply_filters( 'rtm_gallery_upload_title_label', __( 'Upload Media', 'buddypress-media' ) ) ),
-						esc_html( apply_filters( 'rtm_gallery_upload_label', __( 'Upload', 'buddypress-media' ) ) )
-					);
-				}
+				printf(
+					'<span class="rtmedia-upload-media-link primary" id="rtm_show_upload_ui" title="%1$s"><i class="dashicons dashicons-upload"></i>%2$s</span>',
+					esc_attr( apply_filters( 'rtm_gallery_upload_title_label', __( 'Upload Media', 'buddypress-media' ) ) ),
+					esc_html( apply_filters( 'rtm_gallery_upload_label', __( 'Upload', 'buddypress-media' ) ) )
+				);
 			}
 		}
 	}
@@ -332,7 +321,6 @@ function add_music_cover_art( $file_object, $upload_obj ) {
 			'id' => $upload_obj->media_ids[0],
 		)
 	);
-
 }
 
 /**
@@ -374,7 +362,6 @@ function rtmedia_content_before_media() {
 			esc_attr__( 'Close (Esc)', 'buddypress-media' )
 		);
 	}
-
 }
 add_action( 'rtmedia_before_media', 'rtmedia_content_before_media', 10 );
 
@@ -412,7 +399,6 @@ function update_group_media_privacy( $group_id ) {
 			$wpdb->query( $update_sql ); // phpcs:ignore
 		}
 	}
-
 }
 add_action( 'groups_settings_updated', 'update_group_media_privacy', 99, 1 );
 
@@ -426,7 +412,6 @@ function update_group_media_privacy( $group_id ) {
 function rtmedia_add_no_popup_class( $class = '' ) {
 
 	return $class .= ' no-popup';
-
 }
 
 /**
@@ -439,7 +424,6 @@ function rtmedia_add_no_popup_class( $class = '' ) {
 function rtmedia_gallery_do_not_show_media_title( $flag ) {
 
 	return false;
-
 }
 
 /**
@@ -449,7 +433,6 @@ function rtmedia_remove_media_query_hooks_after_gallery() {
 
 	remove_filter( 'rtmedia_gallery_list_item_a_class', 'rtmedia_add_no_popup_class', 10, 1 );
 	remove_filter( 'rtmedia_media_gallery_show_media_title', 'rtmedia_gallery_do_not_show_media_title', 10, 1 );
-
 }
 add_action( 'rtmedia_after_media_gallery', 'rtmedia_remove_media_query_hooks_after_gallery' );
 
@@ -472,7 +455,6 @@ function sanitize_filename_before_upload( $filename ) {
 	$string          = preg_replace( '/\+/', '', $string );
 
 	return remove_accents( $string ) . $ext;
-
 }
 
 /**
@@ -481,7 +463,6 @@ function sanitize_filename_before_upload( $filename ) {
 function rtmedia_upload_sanitize_filename_before_upload() {
 
 	add_action( 'sanitize_file_name', 'sanitize_filename_before_upload', 10, 1 );
-
 }
 add_action( 'rtmedia_upload_set_post_object', 'rtmedia_upload_sanitize_filename_before_upload', 10 );
 
@@ -496,7 +477,6 @@ function rtmedia_admin_pages_content( $page ) {
 
 		include RTMEDIA_PATH . 'app/main/templates/admin-pages-content.php';
 	}
-
 }
 add_action( 'rtmedia_admin_page_insert', 'rtmedia_admin_pages_content', 99, 1 );
 
@@ -506,7 +486,6 @@ function rtmedia_admin_pages_content( $page ) {
 function rtmedia_add_media_delete_nonce() {
 
 	wp_nonce_field( 'rtmedia_' . get_current_user_id(), 'rtmedia_media_delete_nonce' );
-
 }
 add_action( 'rtmedia_before_template_load', 'rtmedia_add_media_delete_nonce' );
 
@@ -525,7 +504,6 @@ function rtmedia_add_media_delete_nonce_shortcode() {
 	if ( isset( $rtmedia_query->is_gallery_shortcode ) && true === $rtmedia_query->is_gallery_shortcode ) {
 		wp_nonce_field( 'rtmedia_' . get_current_user_id(), 'rtmedia_media_delete_nonce' );
 	}
-
 }
 add_action( 'rtmedia_pre_template', 'rtmedia_add_media_delete_nonce_shortcode' );
 
@@ -807,7 +785,7 @@ function rtmedia_addons_admin_notice() {
 
 	if ( 'rtmedia_page_rtmedia-license' === $screen->id ) {
 
-		if ( isset( $_POST ) && count( $_POST ) > 0 ) { // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing
+		if ( isset( $_POST ) && count( $_POST ) > 0 ) { // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification, WordPress.Security.NonceVerification.Missing -- We are only fetching the count of elements in $_POST so nonce verification is not needed.
 			?>
 			<div class="notice notice-success is-dismissible">
 				<p><?php esc_html_e( 'Settings has been saved successfully.', 'buddypress-media' ); ?></p>
@@ -1023,7 +1001,6 @@ function rtmedia_gallery_shortcode_json_query_vars( $wp_query ) {
 	}
 
 	return $wp_query;
-
 }
 add_action( 'pre_get_posts', 'rtmedia_gallery_shortcode_json_query_vars', 99 );
 
@@ -1122,7 +1099,6 @@ function rtmedia_gallery_shortcode_rewrite_rules() {
 
 	// Rule for homepage.
 	add_rewrite_rule( 'pg/([0-9]*)/?', 'index.php?page_id=' . get_option( 'page_on_front' ) . '&pg=$matches[1]', 'top' );
-
 }
 add_action( 'rtmedia_add_rewrite_rules', 'rtmedia_gallery_shortcode_rewrite_rules' );
 
@@ -1136,19 +1112,13 @@ function rtmedia_after_media_callback() {
 	$comment_media = false;
 	if ( ! empty( $rtmedia_id ) ) {
 		$comment_media = rtmedia_is_comment_media( $rtmedia_id );
-		if ( ! empty( $comment_media ) ) {
-			?>
-			<script type="text/javascript">
-				comment_media = true;
-			</script>
-			<?php
-		} else {
-			?>
-			<script type="text/javascript">
-				comment_media = false;
-			</script>
-			<?php
-		}
+		wp_localize_script(
+			'rtmedia-main',
+			'rtmedia_after_media_vars',
+			array(
+				'comment_media' => (bool) $comment_media,
+			)
+		);
 	}
 }
 add_action( 'rtmedia_after_media', 'rtmedia_after_media_callback', 10 );
diff --git a/app/main/controllers/template/rtmedia-ajax-actions.php b/app/main/controllers/template/rtmedia-ajax-actions.php
index 68a3f172c..880ffffc2 100644
--- a/app/main/controllers/template/rtmedia-ajax-actions.php
+++ b/app/main/controllers/template/rtmedia-ajax-actions.php
@@ -39,12 +39,10 @@ function rtmedia_delete_uploaded_media() {
 						$other_count = $model->get_other_album_count( $bp->groups->current_group->id, 'group' );
 
 					}
-				} else {
+				} elseif ( function_exists( 'bp_displayed_user_id' ) ) {
 
-					if ( function_exists( 'bp_displayed_user_id' ) ) {
 						$counts      = $rtmedia_nav_obj->actual_counts( bp_displayed_user_id(), 'profile' );
 						$other_count = $model->get_other_album_count( bp_displayed_user_id(), 'profile' );
-					}
 				}
 
 				$remaining_all_media = ( ! empty( $counts['total']['all'] ) ) ? $counts['total']['all'] : 0;
@@ -52,7 +50,7 @@ function rtmedia_delete_uploaded_media() {
 				$remaining_photos    = ( ! empty( $counts['total']['photo'] ) ) ? $counts['total']['photo'] : 0;
 				$remaining_videos    = ( ! empty( $counts['total']['video'] ) ) ? $counts['total']['video'] : 0;
 				$remaining_music     = ( ! empty( $counts['total']['music'] ) ) ? $counts['total']['music'] : 0;
-				$remaining_docs	  = ( ! empty( $counts['total']['document'] ) ) ? $counts['total']['document'] : 0;
+				$remaining_docs      = ( ! empty( $counts['total']['document'] ) ) ? $counts['total']['document'] : 0;
 			}
 
 			wp_send_json_success(
@@ -79,7 +77,6 @@ function rtmedia_delete_uploaded_media() {
 	);
 
 	wp_die();
-
 }
 add_action( 'wp_ajax_delete_uploaded_media', 'rtmedia_delete_uploaded_media' );
 
@@ -110,6 +107,7 @@ function rtmedia_transcoded_media_added_callback( $attachment_id ) {
 					if ( $activity_id && isset( $media_id ) && ! empty( $media_id ) && function_exists( 'rtmedia_is_comment_media' ) && rtmedia_is_comment_media( $media_id ) ) {
 
 						global $wpdb;
+						// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 						$activity_content = $wpdb->get_var( $wpdb->prepare( "SELECT content FROM {$wpdb->base_prefix}bp_activity WHERE id = %d", $activity_id ) );
 
 						if ( function_exists( 'rtmedia_update_content_of_comment_media' ) ) {
diff --git a/app/main/controllers/template/rtmedia-filters.php b/app/main/controllers/template/rtmedia-filters.php
index 5de4e36cc..c6b5d569e 100644
--- a/app/main/controllers/template/rtmedia-filters.php
+++ b/app/main/controllers/template/rtmedia-filters.php
@@ -59,7 +59,6 @@ function rtmedia_create_album( $options ) {
 	}
 
 	return $options;
-
 }
 add_filter( 'rtmedia_gallery_actions', 'rtmedia_create_album', 12 );
 
@@ -124,7 +123,6 @@ function rtmedia_album_edit( $options ) {
 	}
 
 	return $options;
-
 }
 add_filter( 'rtmedia_gallery_actions', 'rtmedia_album_edit', 11 );
 
@@ -140,7 +138,6 @@ function rtmedia_bp_activity_get_types( $actions ) {
 	$actions['rtmedia_update'] = 'rtMedia update';
 
 	return $actions;
-
 }
 add_filter( 'bp_activity_get_types', 'rtmedia_bp_activity_get_types', 10, 1 );
 
@@ -167,7 +164,6 @@ function rtm_is_buddypress_enable( $flag ) {
 	}
 
 	return false;
-
 }
 add_filter( 'rtm_main_template_buddypress_enable', 'rtm_is_buddypress_enable', 10, 1 );
 
@@ -190,7 +186,6 @@ function rtmedia_media_gallery_show_title_template_request( $flag ) {
 	}
 
 	return $flag;
-
 }
 add_filter( 'rtmedia_media_gallery_show_media_title', 'rtmedia_media_gallery_show_title_template_request', 10, 1 );
 
@@ -214,7 +209,6 @@ function rtmedia_media_gallery_lightbox_template_request( $class ) {
 	}
 
 	return $class;
-
 }
 add_filter( 'rtmedia_gallery_list_item_a_class', 'rtmedia_media_gallery_lightbox_template_request', 10, 1 );
 
@@ -245,7 +239,6 @@ function rtmedia_modify_activity_upload_url( $params ) {
 	}
 
 	return $params;
-
 }
 add_filter( 'rtmedia_modify_upload_params', 'rtmedia_modify_activity_upload_url', 999, 1 );
 
@@ -264,15 +257,12 @@ function rtm_modify_document_title_parts( $title = array() ) {
 
 		if ( isset( $rtmedia_query->action_query->media_type ) ) {
 			( ! class_exists( 'BuddyPress' ) ) ? array_unshift( $title, ucfirst( $rtmedia_query->action_query->media_type ), apply_filters( 'rtmedia_media_tab_name', RTMEDIA_MEDIA_LABEL ) ) : array_unshift( $title, ucfirst( $rtmedia_query->action_query->media_type ) );
-		} else {
-			if ( ! class_exists( 'BuddyPress' ) ) {
+		} elseif ( ! class_exists( 'BuddyPress' ) ) {
 				array_unshift( $title, apply_filters( 'rtmedia_media_tab_name', RTMEDIA_MEDIA_LABEL ) );
-			}
 		}
 	}
 
 	return $title;
-
 }
 add_filter( 'document_title_parts', 'rtm_modify_document_title_parts', 30, 1 );
 
@@ -326,7 +316,6 @@ function replace_src_with_transcoded_file_url( $html, $rtmedia_media ) {
 	$final_file_url = rtmedia_append_timestamp_in_url( $final_file_url );
 
 	return preg_replace( '/src=["]([^"]+)["]/', 'src="' . $final_file_url . '"', $html );
-
 }
 add_filter( 'rtmedia_single_content_filter', 'replace_src_with_transcoded_file_url', 100, 2 );
 
@@ -562,7 +551,6 @@ function rtt_restore_og_wp_image_url( $thumbnail_id, $media_type, $media_id ) {
 	 * Apply filter to get amazon s3 URL
 	 */
 	return apply_filters( 'transcoded_file_url', $thumbnail_id, $media_id );
-
 }
 add_filter( 'show_custom_album_cover', 'rtt_restore_og_wp_image_url', 100, 3 );
 
@@ -666,6 +654,7 @@ function rtmedia_edit_media_on_database( $data, $post_ID ) {
 
 							$activity_content = str_replace( $rtmedia_filepath_old, wp_get_attachment_url( $post_ID ), $activity_content_new );
 
+							// phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 							$wpdb->update( $bp->activity->table_name, array( 'content' => $activity_content ), array( 'id' => $activity_id ) );
 						}
 					}
@@ -761,7 +750,7 @@ function rtmedia_search_fillter_where_query( $where, $table_name ) {
 		$raw_search = wp_unslash( filter_input( INPUT_GET, 'search', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
 
 		if ( 'string' !== gettype( $raw_search ) ) {
-			$raw_search = "";
+			$raw_search = '';
 		}
 
 		$search                = sanitize_text_field( urldecode( $raw_search ) );
diff --git a/app/main/controllers/template/rtmedia-functions.php b/app/main/controllers/template/rtmedia-functions.php
index d87ed1b10..c25fe32c1 100644
--- a/app/main/controllers/template/rtmedia-functions.php
+++ b/app/main/controllers/template/rtmedia-functions.php
@@ -972,14 +972,23 @@ function rtmedia_duration( $id = false ) {
  * @return array
  */
 function rtmedia_sanitize_object( $data, $exceptions = array() ) {
-
+	$allowed_keys = array_merge( RTMediaMedia::$default_object, $exceptions );
+	$sanitized    = array();
 	foreach ( $data as $key => $value ) {
-		if ( ! in_array( $key, array_merge( RTMediaMedia::$default_object, $exceptions ), true ) ) {
-			unset( $data[ $key ] );
+		if ( in_array( $key, $allowed_keys, true ) ) {
+			if ( is_array( $value ) ) {
+				$sanitized[ $key ] = rtmedia_sanitize_object( $value );
+			} elseif ( is_numeric( $value ) ) {
+				$sanitized[ $key ] = absint( $value );
+			} elseif ( false !== filter_var( $value, FILTER_VALIDATE_URL ) ) {
+				$sanitized[ $key ] = esc_url_raw( $value );
+			} else {
+				$sanitized[ $key ] = sanitize_text_field( $value );
+			}
 		}
 	}
 
-	return $data;
+	return $sanitized;
 }
 
 /**
@@ -1486,6 +1495,7 @@ function ( $matches ) use ( $wpdb ) {
 				$extracted_id = intval( $matches[1] ); // Extract numeric ID from video tag.
 
 				// Fetch media_id from rt_rtm_media table using the extracted ID.
+				// phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 				$media_id = $wpdb->get_var(
 					$wpdb->prepare(
 						"SELECT media_id FROM {$wpdb->prefix}rt_rtm_media WHERE id = %d",
@@ -1496,7 +1506,7 @@ function ( $matches ) use ( $wpdb ) {
 				// If media_id exists, return Godam video shortcode.
 				if ( ! empty( $media_id ) ) {
 					return '<div style="max-width: 480px; width: 100%; overflow: hidden;">'
-						   . '<style>div.godam-video-wrapper video, div.godam-video-wrapper iframe { max-width: 100%; height: auto; display: block; }</style>'
+						   . '<style>div.godam-video-wrapper video, div.godam-video-wrapper iframe { max-width: 100%; height: auto; display: block; }</style>' // No a security issue, so keeping the style here.
 						   . do_shortcode( '[godam_video id="' . $media_id . '"]' )
 						   . '</div>';
 				}
@@ -2188,6 +2198,7 @@ function rtmedia_comment_form() {
 
 			<?php RTMediaComment::comment_nonce_generator(); ?>
 		</form>
+		<!-- Note: Not able to trace proper place to replace below script with wp_enqueue_script() function -->
 		<script>
 			(function($) {
 				$( '#comment_content' ).emoji( { place: 'after' } );
@@ -3802,7 +3813,7 @@ function rtmedia_get_allowed_upload_types_array() {
 function rtmedia_add_media( $upload_params = array() ) {
 
 	if ( empty( $upload_params ) ) {
-		$upload_params = $_POST; // phpcs:ignore
+		$upload_params = $_POST; // phpcs:ignore WordPress.Security.NonceVerification.Missing -- Not needed since it is only used to set the global value. It is being sanitized inside set_post_object function.
 	}
 
 	$upload_model = new RTMediaUploadModel();
@@ -4901,7 +4912,8 @@ function rtmedia_media_view_exporter( $email_address, $page = 1 ) {
 	$views           = wp_cache_get( $view_cache_key, 'view_exporter' );
 
 	if ( false === $views || false === $view_count ) {
-		$views      = $wpdb->get_results( $query ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		// phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery -- Direct query is required for custom table.
+		$views      = $wpdb->get_results( $query );
 		$view_count = $wpdb->num_rows;
 
 		wp_cache_set( $view_cache_key, $views, 'view_exporter', 300 );
@@ -5003,7 +5015,8 @@ function rtmedia_media_like_exporter( $email_address, $page = 1 ) {
 	$likes           = wp_cache_get( $likes_cache_key, 'like_exporter' );
 
 	if ( false === $likes || false === $like_count ) {
-		$likes      = $wpdb->get_results( $query ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+		// phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery -- Direct query is required for custom table.
+		$likes      = $wpdb->get_results( $query );
 		$like_count = $wpdb->num_rows;
 
 		wp_cache_set( $likes_cache_key, $likes, 'like_exporter', 300 );
@@ -5202,13 +5215,17 @@ function rtmedia_like_eraser( $email_address, $page = 1 ) {
 
 	global $wpdb;
 
+	$bp_activity_table = $wpdb->prefix . 'bp_activity';
+
 	$query = $wpdb->prepare(
-		'DELETE FROM ' . $wpdb->prefix . "bp_activity WHERE type='rtmedia_like_activity' AND user_id=%d LIMIT %d",
+		"DELETE FROM `{$bp_activity_table}` WHERE type=%s AND user_id=%d LIMIT %d", // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+		'rtmedia_like_activity',
 		$user_data->ID,
 		$number
 	);
 
-	$items_removed = $wpdb->query( $query ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+	// phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
+	$items_removed = $wpdb->query( $query );
 
 	$done = ( $items_removed < $number );
 
diff --git a/app/main/controllers/upload/RTMediaUploadEndpoint.php b/app/main/controllers/upload/RTMediaUploadEndpoint.php
index 31a77346a..8567b9562 100755
--- a/app/main/controllers/upload/RTMediaUploadEndpoint.php
+++ b/app/main/controllers/upload/RTMediaUploadEndpoint.php
@@ -35,7 +35,7 @@ public function __construct() {
 	public function template_redirect( $create_activity = true ) {
 		// todo refactor below function so it takes param also and use if passed else use POST request.
 		ob_start();
-		if ( ! count( $_POST ) ) { // phpcs:ignore
+		if ( ! count( $_POST ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing -- Not needed since we are only counting the elements in $_POST
 			include get_404_template();
 		} else {
 
@@ -283,6 +283,7 @@ public function template_redirect( $create_activity = true ) {
 								$action = sprintf( esc_html__( '%1$s added %2$d %3$s', 'buddypress-media' ), $username, count( $same_medias ), RTMEDIA_MEDIA_SLUG );
 								$action = apply_filters( 'rtmedia_buddypress_action_text_fitler_multiple_media', $action, $username, count( $same_medias ), $user->display_name );
 
+								// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table.
 								$wpdb->update(
 									$bp->activity->table_name,
 									array(
diff --git a/app/main/controllers/upload/RTMediaUploadView.php b/app/main/controllers/upload/RTMediaUploadView.php
index 9e229885c..33e3f11d4 100755
--- a/app/main/controllers/upload/RTMediaUploadView.php
+++ b/app/main/controllers/upload/RTMediaUploadView.php
@@ -122,7 +122,12 @@ public function render( $template_name ) {
 
 				if ( false === $group_status ) {
 					// Query to fetch current group's privacy status.
-					$group_status = $wpdb->get_var( 'SELECT `status` FROM ' . $table_name . ' WHERE id = ' . $group_id ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared
+					$sql = $wpdb->prepare(
+						"SELECT status FROM `{$table_name}` WHERE id = %d", // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared
+						$group_id
+					);
+					// phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared, WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching -- Direct query is required for custom table. safe because SQL is prepared.
+					$group_status = $wpdb->get_var( $sql );
 
 					// Set data in transient for better performance.
 					set_transient( 'group_status_' . $group_id, $group_status );
diff --git a/app/main/controllers/upload/processors/RTMediaUploadFile.php b/app/main/controllers/upload/processors/RTMediaUploadFile.php
index 1a28088a3..542674ac1 100755
--- a/app/main/controllers/upload/processors/RTMediaUploadFile.php
+++ b/app/main/controllers/upload/processors/RTMediaUploadFile.php
@@ -134,15 +134,13 @@ public function upload_dir( $upload_dir ) {
 				$rtmedia_upload_prefix = 'groups/';
 				$id                    = $this->uploaded['context_id'];
 			}
-		} else {
+		} elseif ( 'group' !== $rtmedia_interaction->context->type ) {
 
-			if ( 'group' !== $rtmedia_interaction->context->type ) {
 				$rtmedia_upload_prefix = 'users/';
 				$id                    = apply_filters( 'rtmedia_current_user', get_current_user_id() );
-			} else {
-				$rtmedia_upload_prefix = 'groups/';
-				$id                    = $rtmedia_interaction->context->id;
-			}
+		} else {
+			$rtmedia_upload_prefix = 'groups/';
+			$id                    = $rtmedia_interaction->context->id;
 		}
 
 		$rtmedia_folder_name = apply_filters( 'rtmedia_upload_folder_name', 'rtMedia' );
@@ -184,8 +182,9 @@ public function set_file( $files ) {
 			/**
 			 * Otherwise check for $_FILES global object from the form submitted
 			 */
-		} elseif ( isset( $_FILES['rtmedia_file'] ) ) {
-			$this->populate_file_array( $_FILES['rtmedia_file'] );
+		} elseif ( isset( $_FILES['rtmedia_file'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing -- We are just checking if the value exists over here.
+			$this->populate_file_array( array_map( 'sanitize_text_field', $_FILES['rtmedia_file'] ) ); // phpcs:ignore WordPress.Security.NonceVerification.Missing -- We are just checking if the value exists over here.
+			// The function populate_file_array is sanitizing string and integer values.
 		} else {
 			/**
 			 * No files could be found to upload
@@ -209,7 +208,7 @@ public function populate_file_array( $file_array ) {
 			'type'     => isset( $file_array['type'] ) ? $file_array['type'] : '',
 			'tmp_name' => isset( $file_array['tmp_name'] ) ? $file_array['tmp_name'] : '',
 			'error'    => isset( $file_array['error'] ) ? $file_array['error'] : '',
-			'size'     => isset( $file_array['size'] ) ? $file_array['size'] : 0,
+			'size'     => isset( $file_array['size'] ) ? intval( $file_array['size'] ) : 0,
 		);
 	}
 
@@ -370,7 +369,14 @@ public function safe_unlink( $file_path ) {
 			if ( function_exists( 'wp_delete_file' ) ) {  // wp_delete_file is introduced in WordPress 4.2.
 				wp_delete_file( $file_path );
 			} else {
-				unlink( $file_path );
+				if ( ! function_exists( 'WP_Filesystem' ) ) {
+					require_once ABSPATH . 'wp-admin/includes/file.php';
+				}
+				global $wp_filesystem;
+				if ( ! $wp_filesystem ) {
+					WP_Filesystem();
+				}
+				$wp_filesystem->delete( $file_path );
 			}
 		}
 	}
diff --git a/app/main/interactions/RTMediaInteraction.php b/app/main/interactions/RTMediaInteraction.php
index 0766a9171..8e0ba9306 100755
--- a/app/main/interactions/RTMediaInteraction.php
+++ b/app/main/interactions/RTMediaInteraction.php
@@ -246,11 +246,9 @@ public function set_title( $default, $sep = '|' ) {
 				$title .= $sep . ucfirst( $rtmedia_query->query['media_type'] );
 				$sep    = $old_sep;
 			}
-		} else {
-			if ( isset( $rtmedia_query->action_query ) && isset( $rtmedia_query->action_query->media_type ) ) {
+		} elseif ( isset( $rtmedia_query->action_query ) && isset( $rtmedia_query->action_query->media_type ) ) {
 				$title .= $sep . ucfirst( $rtmedia_query->action_query->media_type );
 				$sep    = $old_sep;
-			}
 		}
 
 		if ( function_exists( 'bp_is_group' ) ) {
@@ -353,17 +351,27 @@ public function rtmedia_wpseo_og_image( $data ) {
 	 */
 	public function rtmedia_wpseo_og_url( $url ) {
 		global $wp_query;
+
 		if ( ! array_key_exists( 'media', $wp_query->query_vars ) ) {
 			return $url;
 		}
-		$s        = empty( $_SERVER['HTTPS'] ) ? '' : ( ( 'on' === $_SERVER['HTTPS'] ) ? 's' : '' );
-		$sp       = strtolower( wp_unslash( $_SERVER['SERVER_PROTOCOL'] ) );
+
+		// Safely retrieve $_SERVER values with validation, unslash, and sanitization.
+		$https          = isset( $_SERVER['HTTPS'] ) ? sanitize_text_field( wp_unslash( $_SERVER['HTTPS'] ) ) : '';
+		$server_protocol = isset( $_SERVER['SERVER_PROTOCOL'] ) ? sanitize_text_field( wp_unslash( $_SERVER['SERVER_PROTOCOL'] ) ) : 'HTTP/1.1';
+		$server_port     = isset( $_SERVER['SERVER_PORT'] ) ? (int) sanitize_text_field( wp_unslash( $_SERVER['SERVER_PORT'] ) ) : 80;
+		$server_name     = isset( $_SERVER['SERVER_NAME'] ) ? sanitize_text_field( wp_unslash( $_SERVER['SERVER_NAME'] ) ) : '';
+		$request_uri     = isset( $_SERVER['REQUEST_URI'] ) ? sanitize_text_field( wp_unslash( $_SERVER['REQUEST_URI'] ) ) : '';
+
+		$s        = ( 'on' === strtolower( $https ) ) ? 's' : '';
+		$sp       = strtolower( $server_protocol );
 		$protocol = substr( $sp, 0, strpos( $sp, '/' ) ) . $s;
-		$port     = ( '80' === $_SERVER['SERVER_PORT'] ) ? '' : ( ':' . $_SERVER['SERVER_PORT'] );
+		$port     = ( 80 === $server_port ) ? '' : ( ':' . $server_port );
 
-		return $protocol . '://' . esc_url( $_SERVER['SERVER_NAME'] ) . esc_url( $port ) . esc_url( $_SERVER['REQUEST_URI'] );
+		return esc_url( $protocol . '://' . $server_name . $port . $request_uri );
 	}
 
+
 	/**
 	 * Change description using Yoast SEO plugin's filter
 	 *
diff --git a/app/main/routers/query/RTMediaQuery.php b/app/main/routers/query/RTMediaQuery.php
index aa7858652..c7ed00101 100755
--- a/app/main/routers/query/RTMediaQuery.php
+++ b/app/main/routers/query/RTMediaQuery.php
@@ -608,7 +608,7 @@ public function &query( $query ) {
 		$rtmedia_shortcode = sanitize_text_field( filter_input( INPUT_GET, 'rtmedia_shortcode', FILTER_SANITIZE_FULL_SPECIAL_CHARS ) );
 
 		if ( ! empty( $rtmedia_shortcode ) ) {
-			$query_data = $_REQUEST; // phpcs:ignore WordPress.Security.NonceVerification.NoNonceVerification
+			$query_data = $_REQUEST; // phpcs:ignore WordPress.Security.NonceVerification.Recommended, WordPress.Security.NonceVerification.NoNonceVerification -- We are just replacing the args so nonce verification is not needed.
 			foreach ( $query_data as $key => $val ) {
 				if ( ! in_array( $key, $allowed_query, true ) ) {
 					unset( $query_data[ $key ] );
@@ -638,9 +638,22 @@ public function &query( $query ) {
 		if ( isset( $this->query['context'] ) && 'activity' === $this->query['context'] ) {
 			$this->query['activity_id'] = array( 'value' );
 			global $wpdb;
-			// todo cache.
-			$sql_query = $wpdb->prepare( "SELECT id FROM {$wpdb->prefix}bp_activity WHERE item_id = %d AND type = %s", 0, 'rtmedia_update' );
-			$this->query['activity_id']['value'] = $wpdb->get_col( $sql_query );
+			$cache_key   = 'rtmedia_activity_ids_0_rtmedia_update';
+			$cache_group = 'rtmedia_activity';
+
+			$activity_ids = wp_cache_get( $cache_key, $cache_group );
+			if ( false === $activity_ids ) {
+				$sql_query = $wpdb->prepare( "SELECT id FROM {$wpdb->prefix}bp_activity WHERE item_id = %d AND type = %s", 0, 'rtmedia_update' );
+
+				// Direct query required; safe because values are prepared.
+				// phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.PreparedSQL.NotPrepared
+				$activity_ids = $wpdb->get_col( $sql_query );
+
+				// Store result in cache for 1 hour.
+				wp_cache_set( $cache_key, $activity_ids, $cache_group, HOUR_IN_SECONDS );
+			}
+
+			$this->query['activity_id']['value'] = $activity_ids;
 		}
 
 		if ( isset( $this->query ) && isset( $this->query['global'] ) ) {
diff --git a/app/main/templates/media-pagination.php b/app/main/templates/media-pagination.php
index e88978f6e..7858f58c1 100644
--- a/app/main/templates/media-pagination.php
+++ b/app/main/templates/media-pagination.php
@@ -47,7 +47,7 @@ class="rtm-go-to-num" id="rtmedia_go_to_num" />
 			}
 		}
 
-		for ( $i = 1; $i <= $pages; $i ++ ) {
+		for ( $i = 1; $i <= $pages; $i++ ) {
 			if ( 1 !== $pages && ( ! ( $i >= $paged + $range + 1 || $i <= $paged - $range - 1 ) || $pages <= $showitems ) ) {
 				$page_url = $page_base_url . $i;
 
diff --git a/bin/class-wordpress-readme-parser.php b/bin/class-wordpress-readme-parser.php
index 0a7c10fc3..2e9a728d8 100644
--- a/bin/class-wordpress-readme-parser.php
+++ b/bin/class-wordpress-readme-parser.php
@@ -39,7 +39,7 @@ function __construct( $args = array() ) {
 		$this->metadata          = array_fill_keys( array( 'Contributors', 'Tags', 'Requires at least', 'Tested up to', 'Stable tag', 'License', 'License URI' ), null );
 		foreach ( explode( "\n", $matches[2] ) as $metadatum ) {
 			if ( ! preg_match( '/^(.+?):\s+(.+)$/', $metadatum, $metadataum_matches ) ) {
-				throw new Exception( "Parse error in $metadatum" );
+				throw new Exception( 'Parse error in ' . esc_html( $metadatum ) );
 			}
 			list( $name, $value ) = array_slice( $metadataum_matches, 1, 2 );
 			$this->metadata[ $name ] = $value;
diff --git a/index.php b/index.php
index 74051f80f..290941068 100644
--- a/index.php
+++ b/index.php
@@ -3,11 +3,14 @@
  * Plugin Name: rtMedia for WordPress, BuddyPress and bbPress
  * Plugin URI: https://rtmedia.io/?utm_source=dashboard&utm_medium=plugin&utm_campaign=buddypress-media
  * Description: This plugin adds missing media rich features like photos, videos and audio uploading to BuddyPress which are essential if you are building social network, seriously!
- * Version: 4.7.3
- * Author: rtCamp
+ * Version: 4.7.4
+ * Requires at least: 4.1
  * Text Domain: buddypress-media
+ * Author: rtCamp
  * Author URI: http://rtcamp.com/?utm_source=dashboard&utm_medium=plugin&utm_campaign=buddypress-media
  * Domain Path: /languages/
+ * License: GPLv2 or later
+ * License URI: http://www.gnu.org/licenses/gpl-2.0.html
  *
  * Main file, contains the plugin metadata and activation processes
  *
@@ -19,7 +22,7 @@
 	/**
 	 * The version of the plugin
 	 */
-	define( 'RTMEDIA_VERSION', '4.7.3' );
+	define( 'RTMEDIA_VERSION', '4.7.4' );
 }
 
 if ( ! defined( 'RTMEDIA_PATH' ) ) {
diff --git a/languages/buddpress-media.pot b/languages/buddpress-media.pot
new file mode 100644
index 000000000..af943d159
--- /dev/null
+++ b/languages/buddpress-media.pot
@@ -0,0 +1,3465 @@
+# Copyright (C) 2025 rtCamp
+# This file is distributed under the GPLv2 or later.
+msgid ""
+msgstr ""
+"Project-Id-Version: rtMedia for WordPress, BuddyPress and bbPress 4.7.4\n"
+"Report-Msgid-Bugs-To: https://wordpress.org/support/plugin/buddypress-media\n"
+"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
+"Language-Team: LANGUAGE <LL@li.org>\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+"POT-Creation-Date: 2025-10-30T07:53:22+00:00\n"
+"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
+"X-Generator: WP-CLI 2.11.0\n"
+"X-Domain: buddypress-media\n"
+
+#. Plugin Name of the plugin
+#: index.php
+msgid "rtMedia for WordPress, BuddyPress and bbPress"
+msgstr ""
+
+#. Plugin URI of the plugin
+#: index.php
+msgid "https://rtmedia.io/?utm_source=dashboard&utm_medium=plugin&utm_campaign=buddypress-media"
+msgstr ""
+
+#. Description of the plugin
+#: index.php
+msgid "This plugin adds missing media rich features like photos, videos and audio uploading to BuddyPress which are essential if you are building social network, seriously!"
+msgstr ""
+
+#. Author of the plugin
+#: index.php
+#: app/helper/RTMediaThemes.php:113
+#: app/helper/RTMediaThemes.php:123
+#: app/helper/RTMediaThemes.php:133
+msgid "rtCamp"
+msgstr ""
+
+#. Author URI of the plugin
+#: index.php
+msgid "http://rtcamp.com/?utm_source=dashboard&utm_medium=plugin&utm_campaign=buddypress-media"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:278
+msgid "View"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:431
+msgid "rtMedia:"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:432
+msgid " You must"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:434
+msgid "update permalink structure"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:435
+msgid "to something other than the default for it to work."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:548
+msgid "rtMedia Pro is released"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:576
+msgid "Right Now in rtMedia"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:613
+#: app/admin/RTMediaAdmin.php:655
+#: app/admin/RTMediaAdmin.php:658
+#: app/admin/RTMediaAdmin.php:888
+#: app/admin/RTMediaAdmin.php:889
+#: app/admin/RTMediaAdmin.php:1188
+msgid "Settings"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:620
+#: app/admin/RTMediaAdmin.php:681
+#: app/admin/RTMediaAdmin.php:684
+#: app/admin/RTMediaAdmin.php:912
+#: app/admin/RTMediaAdmin.php:913
+#: app/admin/RTMediaAdmin.php:1214
+#: app/helper/RTMediaSettings.php:267
+#: app/helper/RTMediaSupport.php:92
+#: app/helper/RTMediaSupport.php:93
+msgid "Support"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:647
+#: app/admin/RTMediaAdmin.php:1155
+#: app/admin/RTMediaAdmin.php:1156
+#: app/importers/RTMediaActivityUpgrade.php:189
+#: app/importers/RTMediaMigration.php:97
+#: app/main/RTMedia.php:1215
+#: app/main/RTMedia.php:2281
+msgid "rtMedia"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:668
+#: app/admin/RTMediaAdmin.php:671
+#: app/admin/RTMediaAdmin.php:900
+#: app/admin/RTMediaAdmin.php:901
+#: app/admin/RTMediaAdmin.php:1193
+msgid "Premium"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:694
+#: app/admin/RTMediaAdmin.php:697
+#: app/admin/RTMediaAdmin.php:925
+#: app/admin/RTMediaAdmin.php:926
+#: app/admin/RTMediaAdmin.php:1201
+msgid "Themes"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:708
+#: app/admin/RTMediaAdmin.php:711
+#: app/admin/RTMediaAdmin.php:939
+#: app/admin/RTMediaAdmin.php:940
+#: app/admin/RTMediaAdmin.php:1207
+msgid "Hire Us"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:722
+#: app/admin/RTMediaAdmin.php:725
+#: app/admin/RTMediaAdmin.php:953
+#: app/admin/RTMediaAdmin.php:954
+#: app/admin/RTMediaAdmin.php:1221
+msgid "Licenses"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:806
+msgid "Invalid value for [default_size_property]."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:812
+msgid "Please do not refresh this page."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:813
+msgid "Something went wrong. Please "
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:813
+msgid "refresh"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:813
+msgid " page."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:814
+msgid "This will subscribe you to the free plan."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:815
+msgid "Are you sure you want to disable the encoding service?"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:816
+msgid "Are you sure you want to enable the encoding service?"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:817
+msgid "Settings have changed, you should save them!"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:818
+msgid "Number of video thumbnails to be generated should be greater than 0 in media sizes settings. Setting it to default value 2."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:819
+msgid "Invalid value for number of video thumbnails in media sizes settings. Setting it to round value"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:820
+msgid "Number of percentage in JPEG image quality should be greater than 0 in media sizes settings. Setting it to default value 90."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:821
+msgid "Number of percentage in JPEG image quality should be less than 100 in media sizes settings. Setting it to 100."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:822
+msgid "Invalid value for percentage in JPEG image quality in media sizes settings. Setting it to round value"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:823
+msgid "Please enter positive integer value only. Setting number of media per page value to default value 10."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:824
+msgid "Please enter positive integer value only. Setting number of media per page value to round value"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:825
+msgid "Request failed."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:826
+msgid "You can not use @import statement in custom css"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:833
+msgid "ON"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:834
+msgid "OFF"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:845
+msgid "Please enter WP Admin Login."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:846
+msgid "Please enter WP Admin password."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:847
+msgid "Please enter SSH / FTP host."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:848
+msgid "Please enter SSH / FTP login."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:849
+msgid "Please enter SSH / FTP password."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:850
+msgid "Please fill all the fields."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1108
+msgid "Empowering The Web With WordPress"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1300
+#: app/admin/RTMediaAdmin.php:1301
+msgid "Display"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1309
+msgid "rtMedia BuddyPress"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1310
+msgid "BuddyPress"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1318
+msgid "rtMedia Types"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1319
+msgid "Types"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1326
+msgid "rtMedia Sizes"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1327
+msgid "Media Sizes"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1334
+msgid "rtMedia Privacy"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1335
+#: app/main/controllers/privacy/RTMediaPrivacy.php:520
+#: app/main/controllers/template/rtmedia-functions.php:2796
+msgid "Privacy"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1341
+msgid "rtMedia Custom CSS"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1342
+msgid "Custom CSS"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1351
+#: app/admin/RTMediaAdmin.php:1352
+msgid "Other Settings"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1359
+#: app/admin/RTMediaAdmin.php:1360
+msgid "Export/Import"
+msgstr ""
+
+#. translators: 1. Home url.
+#: app/admin/RTMediaAdmin.php:1413
+msgid "I use @rtMediaWP http://rt.cx/rtmedia on %s"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1421
+msgid "Spread the Word"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1429
+#: app/admin/templates/settings/sidebar-branding.php:18
+msgid "Subscribe"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1457
+msgid "You do not have permission to export settings."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1482
+msgid "Unable to read file!"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1502
+#: app/admin/RTMediaAdmin.php:1509
+msgid "Invalid JSON Supplied!"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1515
+msgid "Invalid JSON Supplied. The JSON you supplied is not exported from rtMedia!"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1525
+msgid "Data passed for settings is unchanged!"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1528
+msgid "rtMedia Settings imported successfully!"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1531
+msgid "Could not update rtMedia Settings"
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1566
+msgid "Thank you for your time."
+msgstr ""
+
+#: app/admin/RTMediaAdmin.php:1593
+msgid "Premium Add-ons"
+msgstr ""
+
+#. translators: 1$s: Account page and link. 2$s: License documentation page link.
+#: app/admin/RTMediaAdmin.php:1749
+msgid "Your license keys can be found on <a href=\"%1$s\">my-account</a> page. For more details, please refer to <a href=\"%2$s\">License documentation</a> page."
+msgstr ""
+
+#. translators: 1. License page link.
+#: app/admin/RTMediaAdmin.php:1769
+msgid "We found an invalid or expired license key for rtMedia Premium. Please go to the <a href=\"%1$s\">Licenses page</a> to fix this issue."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:68
+#: app/admin/RTMediaFormHandler.php:114
+#: app/admin/RTMediaFormHandler.php:217
+#: app/admin/RTMediaFormHandler.php:249
+#: app/admin/RTMediaFormHandler.php:332
+#: app/admin/RTMediaFormHandler.php:362
+msgid "Please provide a \"value\" in the argument."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:160
+msgid "Need to specify atleast two radios, else use a checkbox instead"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:285
+msgid "Please provide a \"href\" in the argument."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:291
+msgid "Please provide a \"text\" in the argument."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:435
+#: templates/media/album-gallery.php:129
+#: templates/media/media-gallery.php:123
+msgid "Load More"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:436
+msgid "Pagination"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:448
+msgid "Allow user to comment on uploaded media"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:453
+msgid "This will display the comment form and comment listing on single media pages as well as inside lightbox (if lightbox is enabled)."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:458
+msgid "Enable search in media page"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:463
+msgid "This will enable the search box in gallery page."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:468
+msgid "Enable likes for media"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:473
+msgid "Enabling this setting will add like feature for media."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:478
+msgid "Use lightbox to display media"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:483
+msgid "View single media in facebook style lightbox."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:488
+msgid "Number of media per page"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:494
+msgid "Number of media items you want to show per page on front end."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:500
+msgid "Media display pagination option"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:506
+msgid "Choose whether you want the load more button or pagination buttons."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:512
+msgid "Enable"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:512
+msgid "Cascading grid layout"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:517
+#: app/admin/RTMediaFormHandler.php:529
+msgid "If you enable masonry view, it is advisable to"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:517
+#: app/admin/RTMediaFormHandler.php:529
+msgid "for masonry view."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:521
+msgid "You might need to"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:521
+msgid "change thumbnail size"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:521
+msgid "and uncheck the crop box for thumbnails."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:521
+msgid "To set gallery for fixed width, set image height to 0 and width as per your requirement and vice-versa."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:524
+msgid "Enable Masonry Cascading grid layout for activity"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:536
+msgid "Enable Direct Upload"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:541
+msgid "Uploading media directly as soon as it gets selected."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:568
+msgid "Single Media View"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:569
+#: app/helper/RTMediaAddon.php:383
+msgid "Media Likes"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:570
+msgid "List Media View"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:571
+msgid "Masonry View"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:572
+msgid "Direct Upload"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:573
+msgid "Media Search"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:591
+msgid "Allow usage data tracking"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:596
+msgid "To make rtMedia better compatible with your sites, you can help the rtMedia team learn what themes and plugins you are using. No private information about your setup will be sent during tracking."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:600
+msgid "Admin bar menu integration"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:605
+msgid "Add rtMedia menu to WordPress admin bar for easy access to settings and moderation page (if enabled)."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:610
+msgid "Add a link to rtMedia in footer"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:615
+msgid "Help us promote rtMedia."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:620
+msgid "Enable JSON API"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:625
+msgid "This will allow handling API requests for rtMedia sent through any mobile app."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:628
+msgid "You can refer to the API document from"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:628
+#: app/admin/templates/notices/upload-file-types.php:20
+#: app/admin/templates/notices/upload-file-types.php:40
+#: app/admin/templates/notices/upload-file-types.php:61
+#: app/helper/RTMediaSettings.php:398
+#: app/helper/RTMediaSupport.php:393
+#: app/helper/RTMediaSupport.php:573
+msgid "here"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:648
+msgid "Admin Settings"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:649
+msgid "API Settings"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:650
+msgid "Miscellaneous"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:651
+msgid "Footer Link"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:669
+msgid "Export rtMedia Settings"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:674
+msgid "Export Settings"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:675
+msgid "This will export rtMedia settings into a JSON file."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:681
+msgid "Import rtMedia Settings"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:686
+msgid "Import Settings"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:687
+msgid "This will import rtMedia settings. Allowed File Type: json"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:690
+msgid "Importing invalid files/settings may break your site. Please import valid file exported from rtMedia plugin only."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:693
+msgid "Export your personal data"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:698
+msgid "Export Data"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:699
+msgid "This will export your personal data."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:705
+msgid "Erase your personal data"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:710
+msgid "Erase Data"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:711
+msgid "This will erase your personal data."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:715
+msgid "Data will be expoted or erased along with wordpress user data."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:744
+msgid "Export/Import Settings"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:745
+msgid "Export/Erase Personal Data"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:881
+msgid "JPEG/JPG image quality (1-100)"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:887
+msgid "Enter JPEG/JPG Image Quality. Minimum value is 1. 100 is original quality."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:895
+msgid "Image Quality"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:915
+msgid "Custom CSS settings"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:932
+msgid "rtMedia default styles"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:938
+msgid "Load default rtMedia styles. You need to write your own style for rtMedia if you disable it."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:943
+msgid "Paste your CSS code"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:949
+msgid "Custom rtMedia CSS container"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:972
+msgid "Enable privacy"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:978
+msgid "Enable privacy in rtMedia"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:983
+msgid "Default privacy"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:989
+msgid "Set default privacy for media"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:995
+msgid "Allow users to set privacy for their content"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1000
+msgid "If you choose this, users will be able to change privacy of their own uploads."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1004
+msgid "For group uploads, BuddyPress groups privacy is used."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1044
+msgid "Enable media in profile"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1049
+msgid "Enable Media on BuddyPress Profile"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1054
+msgid "Enable media in group"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1059
+msgid "Enable Media on BuddyPress Groups"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1065
+msgid "Allow upload from activity stream"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1070
+msgid "Allow upload using status update box present on activity stream page"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1076
+msgid "Enable media in comment"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1081
+msgid "This will allow users to upload media in comment section for originally uploaded media up to 1 level."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1086
+#: app/admin/RTMediaFormHandler.php:1091
+msgid "Disable upload in comment media"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1097
+msgid "Number of media items to show in activity stream"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1102
+msgid "With bulk uploads activity, the stream may get flooded. You can control the maximum number of media items or files per activity. This limit will not affect the actual number of uploads. This is only for display. \"0\" means unlimited."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1110
+msgid "Enable media notification"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1115
+msgid "This will enable notifications to media authors for media likes and comments."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1121
+msgid "Create activity for media likes"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1126
+msgid "Enabling this setting will create BuddyPress activity for media likes."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1133
+msgid "Create activity for media comments"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1138
+msgid "Enabling this setting will create BuddyPress activity for media comments."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1145
+msgid "Organize media into albums"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1151
+msgid "This will add 'album' tab to BuddyPress profile and group depending on the ^above^ settings."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1156
+msgid "Show album description"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1162
+msgid "This will show description of an album under album gallery page."
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1191
+msgid "Please Enable BuddyPress Activity Streams to update option"
+msgstr ""
+
+#: app/admin/RTMediaFormHandler.php:1201
+msgid "Please Enable BuddyPress User Groups to update option"
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:40
+msgid "terms of services."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:41
+msgid "Please check terms of service."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:62
+msgid "Please enter valid URL."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:63
+msgid "Please enter terms message."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:64
+msgid "Please enter error message."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:65
+msgid "Please enter privacy message."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:126
+msgid "Ask users to agree to your terms"
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:141
+msgid "Show \"Terms of Service\" checkbox on upload screen"
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:146
+#: app/admin/RTMediaUploadTermsAdmin.php:156
+msgid "User have to check the terms and conditions before uploading the media."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:151
+msgid "Show \"Terms of Service\" checkbox on activity screen"
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:161
+msgid "Link for \"Terms of Service\" page"
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:166
+msgid "Link to the terms and condition page where user can read terms and conditions."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:172
+msgid "Terms of Service Message"
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:177
+msgid "Add Terms of Service Message."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:182
+msgid "Error Message"
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:187
+msgid "Display Error Message When User Upload Media Without Selecting Checkbox ."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:192
+msgid "Show \"Privacy Message\" on website"
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:197
+msgid "User will see the privacy message on website."
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:202
+msgid "Privacy Message"
+msgstr ""
+
+#: app/admin/RTMediaUploadTermsAdmin.php:207
+msgid "Display privacy message on your website."
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:13
+msgid "Media Stats"
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:44
+msgid "Usage Stats"
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:58
+msgid "Total "
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:70
+msgid "With Media"
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:82
+msgid "Comments "
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:94
+#: app/main/controllers/media/RTMediaLike.php:31
+msgid "Likes"
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:104
+msgid "rtMedia Links:"
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:105
+msgid "Homepage"
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:108
+msgid "Free Support"
+msgstr ""
+
+#: app/admin/templates/dashboard-widgets/right-now.php:112
+msgid "Premium Addons"
+msgstr ""
+
+#: app/admin/templates/notices/addon-update.php:13
+msgid " rtMedia Premium update is available. Please update it from the plugins or download it from <a href = \"https://rtmedia.io/my-account/\" target=\"_blank\" >your account</a>"
+msgstr ""
+
+#: app/admin/templates/notices/addon-update.php:15
+#: app/admin/templates/notices/premium-addon.php:27
+msgid "rtMedia: "
+msgstr ""
+
+#: app/admin/templates/notices/inspirebook-release.php:15
+msgid "Meet InspireBook"
+msgstr ""
+
+#: app/admin/templates/notices/inspirebook-release.php:17
+msgid " - First official rtMedia premium theme."
+msgstr ""
+
+#. translators: %s: Product page link.
+#: app/admin/templates/notices/premium-addon.php:21
+msgid "Check 30+ premium rtMedia add-ons on our <a href=\"%s\">store</a>."
+msgstr ""
+
+#: app/admin/templates/notices/transcoder.php:35
+msgid "Install <a href=\"https://godam.io\" target=\"_blank\">GoDAM plugin</a> which includes powerful Digital Asset Management features along with video transcoding services."
+msgstr ""
+
+#: app/admin/templates/notices/update-template.php:12
+msgid "Please update rtMedia template files if you have overridden the default rtMedia templates in your theme. If not, you can ignore and hide this notice."
+msgstr ""
+
+#: app/admin/templates/notices/update-template.php:14
+#: app/importers/RTMediaMediaSizeImporter.php:112
+#: app/importers/RTMediaMigration.php:102
+msgid "Hide"
+msgstr ""
+
+#. translators: 1. Not supported image types.
+#: app/admin/templates/notices/upload-file-types.php:17
+msgid "You have images enabled on rtMedia but your network allowed filetypes do not permit uploading of %s. Click "
+msgstr ""
+
+#: app/admin/templates/notices/upload-file-types.php:22
+#: app/admin/templates/notices/upload-file-types.php:42
+#: app/admin/templates/notices/upload-file-types.php:63
+msgid " to change your settings manually."
+msgstr ""
+
+#: app/admin/templates/notices/upload-file-types.php:24
+#: app/admin/templates/notices/upload-file-types.php:44
+#: app/admin/templates/notices/upload-file-types.php:65
+msgid "Recommended:"
+msgstr ""
+
+#: app/admin/templates/notices/upload-file-types.php:25
+#: app/admin/templates/notices/upload-file-types.php:45
+#: app/admin/templates/notices/upload-file-types.php:66
+msgid "Update Network Settings Automatically"
+msgstr ""
+
+#: app/admin/templates/notices/upload-file-types.php:38
+msgid "You have video enabled on BuddyPress Media but your network allowed filetypes do not permit uploading of mp4. Click "
+msgstr ""
+
+#: app/admin/templates/notices/upload-file-types.php:59
+msgid "You have audio enabled on BuddyPress Media but your network allowed filetypes do not permit uploading of mp3. Click "
+msgstr ""
+
+#: app/admin/templates/settings/main.php:23
+msgid "Settings saved successfully!"
+msgstr ""
+
+#: app/admin/templates/settings/main.php:28
+#: app/admin/templates/settings/main.php:60
+msgid "Save Settings"
+msgstr ""
+
+#: app/admin/templates/settings/media-sizes.php:12
+msgid "Media Size Settings"
+msgstr ""
+
+#: app/admin/templates/settings/media-sizes.php:17
+msgid "Category"
+msgstr ""
+
+#: app/admin/templates/settings/media-sizes.php:18
+msgid "Entity"
+msgstr ""
+
+#: app/admin/templates/settings/media-sizes.php:19
+msgid "Width"
+msgstr ""
+
+#: app/admin/templates/settings/media-sizes.php:20
+msgid "Height"
+msgstr ""
+
+#: app/admin/templates/settings/media-sizes.php:21
+msgid "Crop"
+msgstr ""
+
+#: app/admin/templates/settings/media-types.php:14
+msgid "Media Types Settings"
+msgstr ""
+
+#: app/admin/templates/settings/media-types.php:23
+#: app/helper/RTMediaSettings.php:419
+msgid "Media Type"
+msgstr ""
+
+#: app/admin/templates/settings/media-types.php:28
+msgid "Allow Upload"
+msgstr ""
+
+#: app/admin/templates/settings/media-types.php:30
+msgid "Allows you to upload a particular media type on your post."
+msgstr ""
+
+#: app/admin/templates/settings/media-types.php:37
+msgid "Set Featured"
+msgstr ""
+
+#: app/admin/templates/settings/media-types.php:39
+msgid "Place a specific media as a featured content on the post."
+msgstr ""
+
+#: app/admin/templates/settings/media-types.php:88
+msgid "File Extensions"
+msgstr ""
+
+#: app/admin/templates/settings/sidebar-addons.php:11
+msgid "Post to Twitter Now"
+msgstr ""
+
+#: app/admin/templates/settings/sidebar-addons.php:13
+msgid "Post to Twitter"
+msgstr ""
+
+#: app/admin/templates/settings/sidebar-addons.php:16
+msgid "Share on Facebook Now"
+msgstr ""
+
+#: app/admin/templates/settings/sidebar-addons.php:18
+msgid "Post to Facebook"
+msgstr ""
+
+#: app/admin/templates/settings/sidebar-addons.php:21
+msgid "Rate rtMedia on Wordpress.org"
+msgstr ""
+
+#: app/admin/templates/settings/sidebar-addons.php:23
+msgid "Rate us on Wordpress.org"
+msgstr ""
+
+#: app/admin/templates/settings/sidebar-addons.php:26
+#: app/admin/templates/settings/sidebar-addons.php:28
+msgid "Subscribe to our Feeds"
+msgstr ""
+
+#: app/admin/templates/tmpl-rtm-album-favourites-importer.php:12
+msgid "User's Favorites:"
+msgstr ""
+
+#: app/helper/rtForm.php:672
+msgid "Delete this file"
+msgstr ""
+
+#. translators: 1: Line number, 2: file.
+#: app/helper/rtFormInvalidArgumentsException.php:28
+msgid "Error on line %1$s in %2$s : "
+msgstr ""
+
+#. translators: %s: message.
+#: app/helper/rtFormInvalidArgumentsException.php:30
+msgid "The method expects an array in arguments for %s provided."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:94
+#: app/helper/RTMediaAddon.php:95
+msgid "Premium Features"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:119
+msgid "SEO"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:122
+msgid "Generate an XML sitemap for all the public media files uploaded via rtMedia plugin. These sitemaps can be useful to index search engine to improve website SEO."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:131
+msgid "Moderation"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:134
+msgid "Report media if they find offensive. Set number of reports to automatically take down media from site."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:143
+msgid "Custom Attributes"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:146
+msgid "Categories media based on attributes. Site owner need to create attributes. When user upload a media, can select in which attribute that media can add."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:155
+msgid "Docs and Other files"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:158
+msgid "Allow users to upload documents and other file type using rtMedia upload box. This addon support all the file extensions which WordPress allows."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:167
+msgid "Default Albums"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:170
+msgid "This plugin allows the creation of multiple default albums for rtMedia uploads. One of these albums can be set as the default global album."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:179
+msgid "Podcast (RSS and Atom feeds)"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:182
+msgid "Read rtMedia uploads from iTunes as well as any RSS feed-reader/podcasting software."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:191
+msgid "Playlists"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:194
+msgid "Audio can be grouped into playlists. Once the user upload any audio file, can create a playlist or use existing one to manage audio files."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:203
+msgid "Favorites"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:206
+msgid "Users can create their list of favorite media in which they can add media previously uploaded by any user."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:215
+msgid "Restrictions"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:218
+msgid "Site admin can set an upload limit on the basis of time span, file size (MB) and number of files user can upload."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:227
+msgid "bbPress Attachments"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:230
+msgid "Attach media files to bbPress forum topics and replies."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:239
+msgid "WordPress Sitewide Gallery"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:242
+msgid "Site admin can create and upload media into WordPress album. Create album without being dependent on BuddyPress."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:251
+msgid "WordPress Comment Attachments"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:254
+msgid "Allow users to upload a media file in WordPress comment attachment box. It will display a thumbnail of attached file."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:263
+msgid "Social Sharing"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:266
+msgid "Share uploaded media on social network sites like Facebook, twitter, linkedin, Google +. This addon integrate with rtSocial plugin."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:275
+msgid "Sidebar Widgets"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:278
+msgid "This addon provide widgets to upload media and display gallery for rtMedia plugin."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:287
+msgid "5 Star Ratings"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:290
+msgid "Display 5 star rating for all the uploaded media. User can rate the media files from 1 to 5 star."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:299
+msgid "Edit Mp3 Info (ID3 Tags)"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:302
+msgid "Allow user to edit MP3 FIle Audio tags (ID 3 tags)."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:311
+msgid "Media Sorting"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:314
+msgid "Sort uploaded media based on file size, ascending/descending title, upload date of media."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:323
+msgid "Bulk Edit"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:326
+msgid "Bulk edit option will allow user to quickly select media files and do required actions like move files from one album to another, change attributes, change privacy, delete files."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:335
+msgid "BuddyPress Profile Picture"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:338
+msgid "User can easily set his/her profile picture from media uploaded via rtMedia."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:347
+msgid "Album Cover Art"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:350
+msgid "User can easily set any of the image of the album as album cover photo"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:359
+msgid "Direct Download Link"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:362
+msgid "User can download media from website. Site owner can restrict which media type can be allowed to download."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:371
+msgid "Upload by URL"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:374
+msgid "Users do not need to download media files from a URL and then upload it with rtMedia. Just provide the absolute URL for the media and it will upload on site."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:386
+msgid "This add-on let you know who liked the media. User can also see which media they liked under their profile."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:395
+msgid "Activity URL Preview"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:398
+msgid "This addon provides a preview of the URL that is shared in BuddyPress activity. Just enter the URL you want to share on your site and see a preview of it before it is shared."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:407
+msgid "View Counter"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:410
+msgid "Enable view count for all the uploaded media. Whenever user open that media file in lightbox or in single media view, that view count will be calculated and display next to media file."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:419
+msgid "Shortcode Generator"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:422
+msgid "This add-on will add shortcode generator button in WordPress post and page editor for all the rtMedia shortcodes."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:431
+msgid "Album Privacy"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:434
+msgid "Set album privacy when user create an album or change album privacy when editing existing albums. The privacy levels are Public, Logged in user, Friends and Private."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:443
+msgid "BuddyPress Group Media Control"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:446
+msgid "This add-on allows group owner to manage media upload feature group wise."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:455
+msgid "Set Custom Thumbnail for Audio/Video"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:458
+msgid "Allow media owner to change the thumbnail of uploaded audio/video files. The File Upload box will be provided to change media thumbnail."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:467
+msgid "myCRED"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:470
+msgid "This plugin integrates rtMedia and myCRED plugin, users can be can award virtual points for various rtMedia activities, like media upload, likes, deleted etc."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:479
+msgid "Social Sync"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:482
+msgid "rtMedia Social Sync allows you to import media from your Facebook account."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:491
+msgid "Photo Watermark"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:494
+msgid "rtMedia Photo Watermark let you add watermark on your images uploaded using rtMedia."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:503
+msgid "Photo Tagging"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:506
+msgid "rtMedia Photo Tagging enable users to tag their friends on photos uploaded using rtMedia."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:515
+msgid "Photo Filters"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:518
+msgid "rtMedia Photo Filters adds Instagram like filters to images uploaded with rtMedia."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:527
+msgid "Membership Add-on"
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:530
+msgid "rtMedia Membership add-on provides membership functionality in your site in terms of media upload."
+msgstr ""
+
+#: app/helper/RTMediaAddon.php:559
+msgid "Coming Soon !!"
+msgstr ""
+
+#: app/helper/RTMediaAdminWidget.php:54
+msgid "Argument missing. id is required."
+msgstr ""
+
+#: app/helper/RTMediaCommentNotification.php:81
+msgid "commented on your"
+msgstr ""
+
+#: app/helper/RTMediaCommentNotification.php:83
+msgid "new comments on your"
+msgstr ""
+
+#: app/helper/RTMediaFeed.php:57
+msgid "No items"
+msgstr ""
+
+#: app/helper/RTMediaFeed.php:65
+msgid "Posted "
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:69
+msgid "You may be interested in "
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:71
+msgid "rtMedia Addons"
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:104
+msgid "Activate "
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:110
+msgid " with your license key to get support and automatic update from your WordPress dashboard."
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:117
+msgid "Enter your license key to activate"
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:124
+msgid "Deactivate License"
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:127
+msgid "Activate License"
+msgstr ""
+
+#. translators: %s: Expiry date.
+#: app/helper/RTMediaLicense.php:175
+msgid "Your license key expired on %s. Please renew your license key."
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:185
+msgid "Your license key has been disabled. Please contact support for more information."
+msgstr ""
+
+#. translators: %s: Account page link.
+#: app/helper/RTMediaLicense.php:195
+msgid "Invalid license. Please <a href=\"%s\" target=\"_blank\">visit your account page</a> and verify it."
+msgstr ""
+
+#. translators: 1: Add-on name, 2:My account page link.
+#: app/helper/RTMediaLicense.php:211
+msgid "Your %1$s is not active for this URL. Please <a href=\"%2$s\" target=\"_blank\">visit your account page</a> to manage your license key URLs."
+msgstr ""
+
+#. translators: %s: Add-on name.
+#: app/helper/RTMediaLicense.php:224
+msgid "This appears to be an invalid license key for %s."
+msgstr ""
+
+#. translators: %s: Account link.
+#: app/helper/RTMediaLicense.php:234
+msgid "Your license key has reached its activation limit. <a href=\"%s\">View possible upgrades</a> now."
+msgstr ""
+
+#. translators: %s: Account link.
+#: app/helper/RTMediaLicense.php:244
+msgid "Your license is not activable, please visit <a href=\"%s\">your account page</a>."
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:252
+#: app/helper/RTMediaLicense.php:307
+msgid "To receive updates, please enter your valid license key."
+msgstr ""
+
+#: app/helper/RTMediaLicense.php:270
+msgid "License key never expires."
+msgstr ""
+
+#. translators: 1: Expiry date.
+#: app/helper/RTMediaLicense.php:280
+msgid "Your license key expires soon! It expires on %1$s. Renew your license key."
+msgstr ""
+
+#. translators: %s: Expiry date.
+#: app/helper/RTMediaLicense.php:292
+msgid "Your license key expires on %s."
+msgstr ""
+
+#: app/helper/RTMediaLikeNotification.php:116
+msgid "liked your"
+msgstr ""
+
+#: app/helper/RTMediaLikeNotification.php:118
+msgid "and one more friend liked your"
+msgstr ""
+
+#: app/helper/RTMediaLikeNotification.php:121
+msgid "and"
+msgstr ""
+
+#: app/helper/RTMediaLikeNotification.php:121
+msgid "other friends liked your"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:257
+msgid "BuddyPress Media Addons for Photos"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:277
+msgid "rtMedia Themes"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:396
+msgid "Currently your network allows uploading of the following file types. You can change the settings"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:417
+#: app/helper/RTMediaSettings.php:419
+msgid "Atleast one Media Type Must be selected"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:428
+#: app/helper/RTMediaSettings.php:430
+msgid "\"Number of media\" count value should be numeric and greater than 0."
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:430
+msgid "Default Count"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:436
+msgid "Settings saved."
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:463
+msgid "If you make changes to width, height or crop settings, you must use"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:465
+msgid "Regenerate Thumbnail Plugin"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:466
+msgid " to regenerate old images."
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:486
+msgid "BuddyPress Media 2.6 requires a database upgrade."
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:488
+msgid "Update Database"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:504
+msgid "If your site has some issues due to rtMedia and you want one on one support then you can create a support topic on the"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:505
+#: app/helper/RTMediaSupport.php:438
+msgid "rtMedia Support Page"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:510
+#: app/helper/RTMediaSupport.php:443
+msgid "If you have any suggestions, enhancements or bug reports, then you can open a new issue on"
+msgstr ""
+
+#: app/helper/RTMediaSettings.php:511
+#: app/helper/RTMediaSupport.php:444
+msgid "GitHub"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:69
+#: app/helper/RTMediaSupport.php:474
+msgid "Cheatin' uh?"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:70
+#: app/helper/RTMediaSupport.php:475
+msgid "Can not verify request source."
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:99
+#: app/helper/RTMediaSupport.php:100
+#: app/helper/templates/debug-info.php:12
+msgid "Debug Info"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:109
+#: app/helper/RTMediaSupport.php:110
+#: app/importers/RTMediaMigration.php:143
+#: app/importers/RTMediaMigration.php:144
+msgid "Migration"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:226
+msgid "by"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:226
+msgid "version"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:383
+msgid "There is no media found to migrate."
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:391
+#: app/main/controllers/media/RTMediaLoginPopup.php:80
+msgid "Click"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:394
+msgid "to migrate media from rtMedia 2.x to rtMedia 3.0+."
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:420
+msgid "Submit a Bug Report"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:423
+msgid "Submit a New Feature Request"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:426
+msgid "Submit Support Request"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:437
+msgid "If your site has some issues due to rtMedia and you want support, feel free to create a support topic on"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:491
+msgid "rtMedia Premium Support Request from"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:494
+msgid "rtMedia New Feature Request from"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:497
+msgid "rtMedia Bug Report from"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:500
+msgid "rtMedia Contact from"
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:547
+msgid "Thank you for your Feedback/Suggestion."
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:553
+msgid "Thank you for posting your support request."
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:554
+msgid "We will get back to you shortly."
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:566
+msgid "Your server failed to send an email."
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:567
+msgid "Kindly contact your server support to fix this."
+msgstr ""
+
+#: app/helper/RTMediaSupport.php:572
+msgid "You can alternatively create a support request"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:67
+#: app/helper/RTMediaThemes.php:68
+msgid "Themes By rtCamp"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:74
+#: app/helper/RTMediaThemes.php:75
+msgid "3rd Party Themes"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:110
+msgid "rtDating"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:116
+msgid "rtDating is a unique, clean and modern theme only for WordPress. This theme is mostly useful for dating sites and community websites. It can also be use for any other WordPress based website."
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:120
+msgid "InspireBook"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:126
+msgid "InspireBook is a premium WordPress theme, designed especially for BuddyPress and rtMedia powered social-networks."
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:130
+msgid "Foodmania"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:136
+msgid "Its premium WordPress theme, designed especially for Food, recipe and photography community sites."
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:155
+msgid "Woffice - Intranet/Extranet WordPress Theme"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:158
+msgid "Alkaweb"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:161
+msgid "Woffice is a feature rich, powerful Multipurpose Intranet/Extranet Wordpress theme."
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:165
+msgid "Thrive - Intranet & Community WordPress Theme"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:168
+#: app/helper/RTMediaThemes.php:188
+msgid "dunhakdis"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:171
+msgid "Thrive is an innovative WordPress Theme designed to cater company portals, organisational websites, company intranet and extranets."
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:175
+msgid "(M) SOCIAL NETWORK BUDDYPRESS THEME"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:178
+msgid "gavick"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:181
+msgid "(M)Social is a sophisticated, vibrant community theme that offers incredible grid layouts, with full BuddyPress support so your users can interact with each other, create their own pages, and share their thoughts and images with the community."
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:185
+msgid "Klein"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:191
+msgid "Klein is an innovative WordPress theme built to support BuddyPress, bbPress, and WooCommerce out of the box. Perfect for websites that interacts with many users."
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:195
+msgid "SweetDate"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:198
+#: app/helper/RTMediaThemes.php:208
+msgid "SeventhQueen"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:201
+msgid "SweetDate is a unique, clean and modern Premium Wordpress theme. It is perfect for a dating or community website but can be used as well for any other domain. They added all the things you need to create a perfect community system."
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:205
+msgid "KLEO"
+msgstr ""
+
+#: app/helper/RTMediaThemes.php:211
+msgid "You no longer need to be a professional developer or designer to create an awesome website. Let your imagination run wild and create the site of your dreams. KLEO has all the tools to get you started."
+msgstr ""
+
+#: app/helper/RTMediaUploadException.php:46
+msgid "The uploaded file exceeds the MAX_FILE_SIZE directive that was specified in the HTML form"
+msgstr ""
+
+#: app/helper/RTMediaUploadException.php:49
+msgid "No file was uploaded"
+msgstr ""
+
+#: app/helper/RTMediaUploadException.php:54
+msgid "Uploade failed due to internal server error."
+msgstr ""
+
+#: app/helper/RTMediaUploadException.php:57
+msgid "File type not allowed."
+msgstr ""
+
+#: app/helper/RTMediaUploadException.php:61
+msgid "Invalid Context for upload."
+msgstr ""
+
+#: app/helper/RTMediaUploadException.php:64
+msgid "Unknown file upload error."
+msgstr ""
+
+#: app/helper/rtUploadAttachment.php:32
+msgid "You are not allowed to upload file."
+msgstr ""
+
+#: app/helper/rtUploadAttachment.php:82
+msgid "You can not upload more than 2 MB."
+msgstr ""
+
+#: app/helper/rtUploadAttachment.php:108
+msgid "There was an error uploading your files"
+msgstr ""
+
+#: app/helper/rtUploadAttachment.php:111
+msgid "Form was submitted"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:22
+#: app/helper/templates/themes-content.php:22
+msgid "Theme Details"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:28
+#: app/helper/templates/3rd-party-themes-content.php:72
+#: app/helper/templates/addon.php:50
+#: app/helper/templates/themes-content.php:28
+#: app/helper/templates/themes-content.php:73
+#: app/importers/BPMediaAlbumimporter.php:210
+msgid "Live Demo"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:30
+#: app/helper/templates/3rd-party-themes-content.php:74
+#: app/helper/templates/themes-content.php:30
+#: app/helper/templates/themes-content.php:77
+#: app/importers/BPMediaAlbumimporter.php:209
+msgid "Buy Now"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:37
+#: app/helper/templates/themes-content.php:37
+msgid "Show previous theme"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:40
+#: app/helper/templates/themes-content.php:40
+msgid "Show next theme"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:43
+#: app/helper/templates/themes-content.php:43
+msgid "Close overlay"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:62
+#: app/helper/templates/themes-content.php:62
+msgid "Read More"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:65
+#: app/helper/templates/themes-content.php:65
+msgid "Tags:"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:85
+msgid "These are the third party themes. For any issues or queries regarding these themes please contact theme developers."
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:89
+msgid "Are you a developer?"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:92
+msgid "If you have developed a rtMedia compatible theme and would like it to list here, please email us at"
+msgstr ""
+
+#: app/helper/templates/3rd-party-themes-content.php:93
+msgid "rtmedia@rtcamp.com"
+msgstr ""
+
+#: app/helper/templates/addon.php:36
+msgid "Docs"
+msgstr ""
+
+#: app/helper/templates/addon.php:42
+msgid "Get this"
+msgstr ""
+
+#: app/helper/templates/debug-info.php:35
+msgid "Download Debug Info"
+msgstr ""
+
+#: app/helper/templates/service-sector.php:14
+msgid "Service"
+msgstr ""
+
+#: app/helper/templates/service-sector.php:19
+msgid "Premium Support"
+msgstr ""
+
+#: app/helper/templates/service-sector.php:23
+msgid "Bug Report"
+msgstr ""
+
+#: app/helper/templates/service-sector.php:27
+msgid "New Feature"
+msgstr ""
+
+#: app/helper/templates/service-sector.php:31
+msgid "Submit"
+msgstr ""
+
+#: app/helper/templates/support-form.php:15
+msgid "Name"
+msgstr ""
+
+#: app/helper/templates/support-form.php:21
+msgid "Use actual user name which used during purchased."
+msgstr ""
+
+#: app/helper/templates/support-form.php:28
+msgid "Email"
+msgstr ""
+
+#: app/helper/templates/support-form.php:34
+msgid "Use email id which used during purchased"
+msgstr ""
+
+#: app/helper/templates/support-form.php:41
+msgid "Website"
+msgstr ""
+
+#: app/helper/templates/support-form.php:50
+msgid "Subject"
+msgstr ""
+
+#: app/helper/templates/support-form.php:59
+#: templates/media/album-single-edit.php:31
+#: templates/media/media-single-edit.php:27
+msgid "Details"
+msgstr ""
+
+#: app/helper/templates/support-form.php:81
+msgid "Attachment"
+msgstr ""
+
+#: app/helper/templates/support-form.php:87
+msgid "Allowed file types are : images, documents and texts."
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:90
+msgid "Warning!"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:91
+msgid "This import process is irreversible. Although everything is tested, please take a "
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:92
+msgid "backup of your database and files"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:93
+msgid ", before proceeding. If you don't know your way around databases and files, consider "
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:94
+msgid "hiring us"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:95
+msgid ", or another professional."
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:97
+msgid "If you have set \"WP_DEBUG\" in you wp-config.php file, please make sure it is set to \"false\", so that it doesn't conflict with the import process."
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:98
+msgid "I have taken a backup of the database and files of this site."
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:100
+msgid "Start Import"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:105
+msgid "Users"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:115
+#: app/main/RTMedia.php:867
+msgid "Media"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:138
+msgid "Comments"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:144
+msgid "Comments: 0/0 (No comments to import)"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:152
+msgid "User's Favorites"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:161
+msgid "BP-Album is active on your site and will cause problems with the import."
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:162
+msgid "Click here to deactivate BP-Album and continue importing"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:168
+msgid "Some of the media failed to import. The file might be corrupt or deleted."
+msgstr ""
+
+#. translators: %d: Media.
+#: app/importers/BPMediaAlbumimporter.php:170
+msgid "The following %d BP Album Media id's could not be imported"
+msgstr ""
+
+#. translators: %s: URL.
+#: app/importers/BPMediaAlbumimporter.php:180
+msgid "I just imported bp-album to @rtMediaWP http://rt.cx/rtmedia on %s"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:181
+msgid "Congratulations!"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:181
+msgid "All media from BP Album has been imported."
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:182
+msgid "Tweet this"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:186
+msgid "However, a lot of unnecessary files and a database table are still eating up your resources. If everything seems fine, you can clean this data up."
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:189
+msgid "Clean up Now"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:192
+msgid "Clean up Later"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:197
+msgid "Why don't you try adding some Instagram like effects to your images?"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:204
+msgid "rtMedia Photo Filters adds Instagram like filters to images uploaded with BuddyPress Media."
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:205
+msgid "Important"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:205
+msgid "You need to have ImageMagick installed on your server for this addon to work."
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:215
+msgid "Looks like you don't use BP Album. Is there any other BuddyPress Plugin you want an importer for?"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:216
+msgid "Create an issue"
+msgstr ""
+
+#: app/importers/BPMediaAlbumimporter.php:217
+msgid " on GitHub requesting the same."
+msgstr ""
+
+#: app/importers/RTMediaActivityUpgrade.php:34
+#: app/importers/RTMediaActivityUpgrade.php:35
+msgid "Media activity upgrade"
+msgstr ""
+
+#: app/importers/RTMediaActivityUpgrade.php:190
+msgid ": Database table structure for rtMedia has been updated. Please "
+msgstr ""
+
+#: app/importers/RTMediaActivityUpgrade.php:191
+#: app/importers/RTMediaMediaSizeImporter.php:110
+#: app/importers/RTMediaMigration.php:100
+msgid "Click Here"
+msgstr ""
+
+#: app/importers/RTMediaActivityUpgrade.php:192
+msgid " to upgrade rtMedia activities."
+msgstr ""
+
+#: app/importers/RTMediaMediaSizeImporter.php:39
+#: app/importers/RTMediaMediaSizeImporter.php:40
+msgid "Media Size Import"
+msgstr ""
+
+#: app/importers/RTMediaMediaSizeImporter.php:108
+msgid ": Database table structure for rtMedia has been updated. Please"
+msgstr ""
+
+#: app/importers/RTMediaMediaSizeImporter.php:111
+msgid "to import media sizes"
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:98
+msgid "Please Migrate your Database"
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:562
+msgid "Please Resolve create database error before migration."
+msgstr ""
+
+#. translators: 1: %s gets replaced by '<strong>', 2: %s by '</strong>'
+#: app/importers/RTMediaMigration.php:579
+msgid "Please Backup your %1$sDATABASE%2$s and %1$sUPLOAD%2$s folder before Migration."
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:601
+msgid "rtMedia Migration"
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:603
+msgid "It will migrate following things"
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:605
+msgid "User Albums : "
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:611
+msgid "Groups Albums : "
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:617
+msgid "Media : "
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:623
+msgid "Comments : "
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:650
+msgid "Start"
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:1264
+msgid " day"
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:1268
+msgid " hour"
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:1272
+msgid " minute"
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:1276
+msgid " second"
+msgstr ""
+
+#: app/importers/RTMediaMigration.php:1282
+msgid "No time remaining."
+msgstr ""
+
+#: app/importers/templates/activity-upgrade.php:11
+msgid "rtMedia: Upgrade rtMedia activity"
+msgstr ""
+
+#: app/importers/templates/activity-upgrade.php:18
+#: app/importers/templates/media-size-importer.php:18
+msgid "(estimated)"
+msgstr ""
+
+#: app/importers/templates/media-size-importer.php:11
+msgid "rtMedia: Import Media Size"
+msgstr ""
+
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:494
+#: app/main/controllers/upload/RTMediaUploadEndpoint.php:60
+#: app/main/controllers/upload/RTMediaUploadEndpoint.php:74
+msgid "Terms and Conditions checkbox not found!"
+msgstr ""
+
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:765
+#: app/main/controllers/shortcodes/RTMediaGalleryShortcode.php:131
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:245
+#: app/main/RTMedia.php:167
+#: app/main/RTMedia.php:1594
+#: app/main/RTMedia.php:1687
+msgid "Media Files"
+msgstr ""
+
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:824
+#: app/main/controllers/media/RTMediaComment.php:217
+#: app/main/controllers/shortcodes/RTMediaUploadShortcode.php:135
+#: app/main/controllers/template/rtmedia-functions.php:2322
+msgid "You are not allowed to upload/attach media."
+msgstr ""
+
+#. translators: 1: user link, 2: media.
+#. translators: 1: username, 2: media type, 3: media name, 4: total media.
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:981
+#: app/main/controllers/media/RTMediaMedia.php:808
+msgid "%1$s added a %2$s"
+msgstr ""
+
+#. translators: 1: user link, 2: media count, 3: media.
+#. translators: 1: user link, 2: media count, 3: rtMedia slug.
+#. translators: 1: Username, 2: Number of medias, 3: Media slug.
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:988
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:991
+#: app/main/controllers/upload/RTMediaUploadEndpoint.php:283
+msgid "%1$s added %2$d %3$s"
+msgstr ""
+
+#. translators: 1: username, 2: media, 3: group name.
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:1063
+msgid "%1$s liked a %2$s in the group %3$s"
+msgstr ""
+
+#. translators: 1: username, 2: media.
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:1066
+msgid "%1$s liked their %2$s"
+msgstr ""
+
+#. translators: 1: username, 2: author, 3: media.
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:1075
+msgid "%1$s liked %2$s's %3$s"
+msgstr ""
+
+#. translators: 1: username, 2: media, 3: group name.
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:1184
+msgid "%1$s commented on a %2$s in the group %3$s"
+msgstr ""
+
+#. translators: 1: username, 2: media.
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:1187
+msgid "%1$s commented on their %2$s"
+msgstr ""
+
+#. translators: 1: username, 2: author, 3: media.
+#: app/main/controllers/activity/RTMediaBuddyPressActivity.php:1196
+msgid "%1$s commented on %2$s's %3$s"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:307
+msgid "username/password empty"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:310
+msgid "incorrect username"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:313
+msgid "incorrect password"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:316
+msgid "login success"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:365
+msgid "fields empty"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:368
+msgid "invalid email"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:371
+msgid "password do not match"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:374
+msgid "username already registered"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:377
+msgid "email already exists"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:380
+msgid "new user created"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:441
+msgid "email empty"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:444
+msgid "username/email not registered"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:447
+msgid "reset link sent"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:481
+msgid "Someone has asked to reset the password for the following site and username."
+msgstr ""
+
+#. translators: 1: Username.
+#: app/main/controllers/api/RTMediaJsonApi.php:485
+msgid "Username: %s"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:486
+msgid "To reset your password visit the following address, otherwise just ignore this email and nothing will happen."
+msgstr ""
+
+#. translators: 1: Blog name.
+#: app/main/controllers/api/RTMediaJsonApi.php:491
+msgid "[%s] Password Reset"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:507
+msgid "bp activities"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:510
+msgid "user activities"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:519
+msgid "no updates"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:542
+msgid "comment content missing"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:545
+msgid "comment posted"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:593
+msgid "unliked media"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:596
+msgid "liked media"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:681
+msgid "no comments"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:684
+msgid "media comments"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:740
+msgid "no likes"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:743
+msgid "media likes"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:797
+msgid "invalid comment/media id"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:800
+msgid "no comment id"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:803
+msgid "comment deleted"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:858
+msgid "no profile found"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:861
+msgid "profile fields"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:963
+msgid "follow user id missing"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:966
+msgid "started following"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:969
+msgid "already following"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1002
+msgid "unfollow id missing"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1005
+msgid "stopped following"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1008
+msgid "not following"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1041
+msgid "name/location empty"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1044
+msgid "profile updated"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1073
+#: app/main/controllers/api/RTMediaJsonApi.php:1101
+msgid "no file"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1076
+#: app/main/controllers/api/RTMediaJsonApi.php:1113
+msgid "upload failed, check size and file type"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1079
+msgid "avatar updated"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1104
+msgid "invalid file type. jpeg and png are allowed."
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1107
+msgid "image type missing"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1110
+msgid "no title"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1116
+msgid "media updated"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1312
+msgid "media list"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1315
+msgid "no media found for requested media type"
+msgstr ""
+
+#: app/main/controllers/api/RTMediaJsonApi.php:1433
+msgid "single media"
+msgstr ""
+
+#: app/main/controllers/group/RTMediaGroupExtension.php:212
+msgid "There was an error saving, please try again"
+msgstr ""
+
+#: app/main/controllers/group/RTMediaGroupExtension.php:214
+msgid "Settings saved successfully"
+msgstr ""
+
+#: app/main/controllers/group/RTMediaGroupExtension.php:238
+msgid "You could display a small snippet of information from your group extension here. It will show on the group home screen."
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:36
+msgctxt "Status General Name"
+msgid "hidden"
+msgstr ""
+
+#. translators: %s: Album.
+#: app/main/controllers/media/RTMediaAlbum.php:38
+msgid "Hidden (%s)"
+msgid_plural "Hidden (%s)"
+msgstr[0] ""
+msgstr[1] ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:55
+#: app/main/controllers/media/RTMediaAlbum.php:67
+#: app/main/controllers/template/RTMediaNav.php:317
+#: app/main/RTMedia.php:891
+#: app/main/RTMedia.php:1490
+msgid "Albums"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:56
+#: app/main/controllers/template/rtmedia-actions.php:125
+#: app/main/controllers/upload/RTMediaUploadView.php:84
+#: app/main/controllers/upload/RTMediaUploadView.php:96
+#: app/main/RTMedia.php:887
+msgid "Album"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:57
+msgid "Create"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:58
+#: app/main/templates/create-album-modal.php:27
+msgid "Create Album"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:59
+#: app/main/controllers/template/rtmedia-filters.php:93
+#: app/main/controllers/template/rtmedia-filters.php:94
+msgid "Edit Album"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:60
+msgid "New Album"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:61
+msgid "All Albums"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:62
+msgid "View Album"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:63
+msgid "Search Albums"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:64
+msgid "No album found"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:65
+msgid "No album found in Trash"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:66
+msgid "Parent"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaAlbum.php:159
+msgid "Untitled Album"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaComment.php:189
+#: app/main/controllers/shortcodes/RTMediaUploadShortcode.php:116
+msgid "The web browser on your device cannot be used to upload files."
+msgstr ""
+
+#: app/main/controllers/media/RTMediaFeatured.php:45
+#: app/main/controllers/media/RTMediaGroupFeatured.php:45
+msgid "Set as Featured"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaFeatured.php:47
+#: app/main/controllers/media/RTMediaGroupFeatured.php:47
+msgid "Remove Featured"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaFeatured.php:289
+#: app/main/controllers/media/RTMediaGroupFeatured.php:303
+msgid "Media type is not allowed"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaGalleryItemAction.php:86
+#: app/main/controllers/media/RTMediaGalleryItemAction.php:120
+msgid "Edit this media"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaGalleryItemAction.php:87
+#: app/main/controllers/media/RTMediaGalleryItemAction.php:121
+#: app/main/controllers/template/rtmedia-functions.php:1282
+#: app/main/controllers/template/rtmedia-functions.php:1308
+#: app/main/RTMedia.php:1432
+msgid "Edit"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaGalleryItemAction.php:89
+#: app/main/controllers/media/RTMediaGalleryItemAction.php:122
+msgid "Delete this media"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaGalleryItemAction.php:90
+#: app/main/controllers/media/RTMediaGalleryItemAction.php:123
+#: app/main/controllers/template/rtmedia-functions.php:2273
+#: app/main/controllers/template/rtmedia-functions.php:2288
+#: app/main/RTMedia.php:1433
+#: templates/media/album-single-edit.php:94
+msgid "Delete"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLike.php:28
+msgid "person likes this"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLike.php:29
+msgid "people like this"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLike.php:30
+msgid "Like"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLike.php:32
+msgid "Unlike"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLoginPopup.php:55
+#: app/main/controllers/template/rtmedia-actions.php:290
+#: app/main/controllers/template/rtmedia-actions.php:300
+msgid "Upload Media"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLoginPopup.php:56
+#: app/main/controllers/template/rtmedia-actions.php:284
+#: app/main/controllers/template/rtmedia-actions.php:291
+#: app/main/controllers/template/rtmedia-actions.php:301
+#: app/main/RTMedia.php:901
+msgid "Upload"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLoginPopup.php:72
+msgid "Please login"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLoginPopup.php:74
+msgid "You need to be logged in to upload Media or to create Album."
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLoginPopup.php:82
+msgid "Login"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLoginPopup.php:83
+msgid "HERE"
+msgstr ""
+
+#: app/main/controllers/media/RTMediaLoginPopup.php:84
+msgid "to login."
+msgstr ""
+
+#: app/main/controllers/media/RTMediaMedia.php:672
+msgid "Error creating attachment for the media file, please try again"
+msgstr ""
+
+#. translators: 1: username, 2: media type, 3: media name, 4: total media.
+#: app/main/controllers/media/RTMediaMedia.php:808
+msgid "%1$s added %4$d %3$s"
+msgstr ""
+
+#. translators: %1$s: tag name, %2$s: class name.
+#: app/main/controllers/media/RTMediaTags.php:177
+#: app/main/controllers/media/RTMediaTags.php:211
+msgid "Unknown property '%1$s' for class '%2$s'"
+msgstr ""
+
+#. translators: %1$s: tag name, %2$s: class name.
+#: app/main/controllers/media/RTMediaTags.php:215
+msgid "Tying to set readonly property '%1$s' for class '%2$s'"
+msgstr ""
+
+#: app/main/controllers/privacy/RTMediaPrivacy.php:483
+msgid "No changes were made to your account."
+msgstr ""
+
+#: app/main/controllers/privacy/RTMediaPrivacy.php:486
+msgid "Your default privacy settings saved successfully."
+msgstr ""
+
+#: app/main/controllers/shortcodes/RTMediaGalleryShortcode.php:345
+msgid "You do not have sufficient privileges to view this gallery"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:29
+#: app/main/controllers/template/rtmedia-actions.php:159
+msgid "Options"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:68
+msgid "Image"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:94
+msgid "Modify Image"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:268
+msgid "Merge"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:341
+msgid "Empowering your community with "
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:342
+msgid "The only complete media solution for WordPress, BuddyPress and bbPress"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:362
+msgid "Close (Esc)"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:569
+#: app/main/controllers/template/rtmedia-actions.php:570
+msgid "Previous"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:571
+#: app/main/controllers/template/rtmedia-actions.php:572
+#: templates/media/album-single-edit.php:142
+msgid "Next"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:791
+msgid "Settings has been saved successfully."
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:795
+msgid "Refresh the page in case if license data is not showing correct."
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:814
+msgid "Posted a status update"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:816
+msgid "rtMedia Updates"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:875
+msgid "Search Media"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-actions.php:1136
+msgid "Please swipe for more media."
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-ajax-actions.php:75
+msgid "Doing wrong, invalid AJAX request!"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-ajax-actions.php:152
+#: app/main/controllers/template/rtmedia-functions.php:2196
+msgid "Comment"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:56
+msgid "Create New Album"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:57
+msgid "Add Album"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:101
+#: app/main/controllers/template/rtmedia-filters.php:102
+msgid "Delete Album"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:118
+#: app/main/controllers/template/rtmedia-filters.php:119
+#: app/main/templates/merge-album-modal.php:12
+#: app/main/templates/merge-album-modal.php:19
+msgid "Merge Album"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:955
+#: app/main/controllers/template/rtmedia-functions.php:4701
+msgid "rtMedia Shortcode Uploads"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:959
+#: app/main/controllers/template/rtmedia-functions.php:4582
+msgid "rtMedia Activities"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:963
+msgid "rtMedia Comments"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:967
+#: app/main/controllers/template/rtmedia-functions.php:4931
+msgid "rtMedia Media Views"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:971
+#: app/main/controllers/template/rtmedia-functions.php:5033
+msgid "rtMedia Media Likes"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:989
+msgid "rtMedia Eraser"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:994
+msgid "rtMedia Likes Eraser"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-filters.php:999
+msgid "rtMedia Album Eraser"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:133
+#: app/main/controllers/template/RTMediaNav.php:294
+#: app/main/RTMedia.php:875
+msgid "All"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:1390
+msgid "There are no comments on this media yet."
+msgstr ""
+
+#. translators: %s Count of comments.
+#: app/main/controllers/template/rtmedia-functions.php:1429
+msgid "Show all %s comments"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:1473
+msgid "Delete Comment"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:2195
+msgid "Type Comment..."
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:2272
+#: app/main/controllers/template/rtmedia-functions.php:2287
+msgid "Delete Media"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:2557
+msgid "Profile Albums"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:2566
+#: app/main/controllers/template/rtmedia-functions.php:2623
+msgid "Group Albums"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:3153
+msgid "You like this"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:3167
+msgid "You and "
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:3190
+msgid " person likes this"
+msgid_plural " people like this"
+msgstr[0] ""
+msgstr[1] ""
+
+#: app/main/controllers/template/rtmedia-functions.php:3309
+msgid "Public"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:3314
+msgid "All members"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:3319
+msgid "Your friends"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:3324
+msgid "Only you"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:3329
+msgid "Blocked temporarily"
+msgstr ""
+
+#. translators: %s: count of hour/minute/second.
+#: app/main/controllers/template/rtmedia-functions.php:3385
+msgid "%s ago "
+msgstr ""
+
+#. translators: %s: number of seconds.
+#: app/main/controllers/template/rtmedia-functions.php:3407
+msgid "%s second"
+msgid_plural "%s seconds"
+msgstr[0] ""
+msgstr[1] ""
+
+#. translators: %s: number of minutes.
+#: app/main/controllers/template/rtmedia-functions.php:3412
+msgid "%s minute"
+msgid_plural "%s minutes"
+msgstr[0] ""
+msgstr[1] ""
+
+#. translators: %s: number of hours.
+#: app/main/controllers/template/rtmedia-functions.php:3417
+msgid "%s hour"
+msgid_plural "%s hours"
+msgstr[0] ""
+msgstr[1] ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4032
+msgid "View Conversation"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4608
+msgid "Activity Date"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4612
+msgid "Activity Content"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4616
+#: app/main/controllers/template/rtmedia-functions.php:4840
+msgid "Attachments"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4710
+msgid "Media Upload Date"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4714
+msgid "Media Title"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4718
+#: app/main/controllers/template/rtmedia-functions.php:4935
+#: app/main/controllers/template/rtmedia-functions.php:5037
+msgid "Media URL"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4722
+msgid "Album Title"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4811
+msgid "rtMedia Activity Comments"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4832
+msgid "Comment Date"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4836
+msgid "Comment Content"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4939
+msgid "Number of Views"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:4943
+msgid "Date of First View"
+msgstr ""
+
+#: app/main/controllers/template/rtmedia-functions.php:5041
+msgid "Date"
+msgstr ""
+
+#: app/main/controllers/template/RTMediaAJAX.php:48
+msgid "You can not create album in this group."
+msgstr ""
+
+#: app/main/controllers/template/RTMediaAJAX.php:54
+msgid "You can not create album."
+msgstr ""
+
+#: app/main/controllers/template/RTMediaAJAX.php:59
+msgid "You can not create more albums, you exceed your album limit."
+msgstr ""
+
+#: app/main/controllers/template/RTMediaAJAX.php:119
+msgid "Data mismatch, Please insert data properly."
+msgstr ""
+
+#: app/main/controllers/template/RTMediaNav.php:68
+msgctxt "My Account Privacy sub nav"
+msgid "Privacy"
+msgstr ""
+
+#: app/main/controllers/template/RTMediaTemplate.php:143
+#: app/main/controllers/template/RTMediaTemplate.php:195
+msgid "Invalid attribute passed for rtmedia_gallery shortcode."
+msgstr ""
+
+#: app/main/controllers/template/RTMediaTemplate.php:470
+#: app/main/controllers/template/RTMediaTemplate.php:599
+#: app/main/controllers/template/RTMediaTemplate.php:716
+#: app/main/controllers/template/RTMediaTemplate.php:948
+msgid "Ooops !!! Invalid access. No nonce was found !!"
+msgstr ""
+
+#: app/main/controllers/template/RTMediaTemplate.php:480
+msgid "Media updated Successfully"
+msgstr ""
+
+#: app/main/controllers/template/RTMediaTemplate.php:499
+msgid "Error in updating Media"
+msgstr ""
+
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:97
+msgid "Error Uploading File"
+msgstr ""
+
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:303
+msgid "MP4 file you have uploaded is corrupt."
+msgstr ""
+
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:311
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:315
+msgid "The MP4 file you have uploaded is using an unsupported video codec. Supported video codec is H.264."
+msgstr ""
+
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:319
+msgid "The MP4 file you have uploaded is not a video file."
+msgstr ""
+
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:332
+msgid "MP3 file you have uploaded is currupt."
+msgstr ""
+
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:340
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:344
+msgid "The MP3 file you have uploaded is using an unsupported audio format. Supported audio format is MP3."
+msgstr ""
+
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:348
+msgid "The MP3 file you have uploaded is not an audio file."
+msgstr ""
+
+#: app/main/controllers/upload/processors/RTMediaUploadFile.php:355
+msgid "Media File you have tried to upload is not supported. Supported media files are .jpg, .png, .gif, .mp3, .mov and .mp4."
+msgstr ""
+
+#: app/main/controllers/upload/RTMediaUploadView.php:155
+msgid "Privacy:"
+msgstr ""
+
+#: app/main/controllers/upload/RTMediaUploadView.php:164
+#: app/main/controllers/upload/RTMediaUploadView.php:225
+#: app/main/controllers/upload/RTMediaUploadView.php:242
+#: app/main/controllers/upload/RTMediaUploadView.php:263
+msgid "File Upload"
+msgstr ""
+
+#: app/main/controllers/upload/RTMediaUploadView.php:168
+msgid "Select your files"
+msgstr ""
+
+#: app/main/controllers/upload/RTMediaUploadView.php:169
+msgid "or"
+msgstr ""
+
+#: app/main/controllers/upload/RTMediaUploadView.php:169
+msgid "Drop your files here"
+msgstr ""
+
+#: app/main/controllers/upload/RTMediaUploadView.php:221
+msgid "Start upload"
+msgstr ""
+
+#: app/main/controllers/upload/RTMediaUploadView.php:249
+#: app/main/controllers/upload/RTMediaUploadView.php:270
+msgid "Attach Media"
+msgstr ""
+
+#: app/main/controllers/upload/RTMediaUploadView.php:285
+msgid "Insert from URL"
+msgstr ""
+
+#. translators: 1: function name, 2: method.
+#: app/main/deprecated/RTMediaDeprecated.php:40
+msgid "Deprecated %1$s. Please use %2$s."
+msgstr ""
+
+#: app/main/RTMedia.php:561
+msgid "Photo"
+msgstr ""
+
+#: app/main/RTMedia.php:562
+msgid "Photos"
+msgstr ""
+
+#: app/main/RTMedia.php:570
+msgid "Video"
+msgstr ""
+
+#: app/main/RTMedia.php:571
+msgid "Videos"
+msgstr ""
+
+#: app/main/RTMedia.php:579
+#: app/main/RTMedia.php:580
+msgid "Music"
+msgstr ""
+
+#: app/main/RTMedia.php:692
+msgid "Private - Visible only to the user"
+msgstr ""
+
+#: app/main/RTMedia.php:693
+msgid "Friends - Visible to user's friends"
+msgstr ""
+
+#: app/main/RTMedia.php:694
+msgid "Logged in Users - Visible to registered users"
+msgstr ""
+
+#: app/main/RTMedia.php:695
+msgid "Public - Visible to the world"
+msgstr ""
+
+#: app/main/RTMedia.php:906
+msgid "Wall Post"
+msgstr ""
+
+#: app/main/RTMedia.php:1141
+#: app/main/RTMedia.php:1150
+msgid "Wall Posts"
+msgstr ""
+
+#: app/main/RTMedia.php:1216
+msgid ": Can't Create Database table. Please check create table permission."
+msgstr ""
+
+#: app/main/RTMedia.php:1360
+#: app/main/RTMedia.php:1413
+msgid "Are you sure you want to delete this media?"
+msgstr ""
+
+#: app/main/RTMedia.php:1361
+msgid "Media file deleted successfully."
+msgstr ""
+
+#: app/main/RTMedia.php:1407
+msgid "Loading media"
+msgstr ""
+
+#: app/main/RTMedia.php:1411
+msgid "Please enter some content to post."
+msgstr ""
+
+#: app/main/RTMedia.php:1412
+msgid "Empty comment is not allowed."
+msgstr ""
+
+#: app/main/RTMedia.php:1414
+msgid "Are you sure you want to delete this comment?"
+msgstr ""
+
+#: app/main/RTMedia.php:1415
+msgid "Are you sure you want to delete this Album?"
+msgstr ""
+
+#: app/main/RTMedia.php:1416
+msgid "Drop files here"
+msgstr ""
+
+#: app/main/RTMedia.php:1417
+msgid "album created successfully."
+msgstr ""
+
+#: app/main/RTMedia.php:1418
+msgid "Something went wrong. Please try again."
+msgstr ""
+
+#: app/main/RTMedia.php:1419
+msgid "Enter an album name."
+msgstr ""
+
+#: app/main/RTMedia.php:1420
+msgid "Max file Size Limit: "
+msgstr ""
+
+#: app/main/RTMedia.php:1421
+msgid "Allowed File Formats"
+msgstr ""
+
+#: app/main/RTMedia.php:1422
+#: templates/media/album-single-edit.php:87
+msgid "Select All Visible"
+msgstr ""
+
+#: app/main/RTMedia.php:1423
+msgid "Unselect All Visible"
+msgstr ""
+
+#: app/main/RTMedia.php:1424
+msgid "Please select some media."
+msgstr ""
+
+#: app/main/RTMedia.php:1425
+msgid "Are you sure you want to delete the selected media?"
+msgstr ""
+
+#: app/main/RTMedia.php:1426
+msgid "Are you sure you want to move the selected media?"
+msgstr ""
+
+#: app/main/RTMedia.php:1427
+msgid "Waiting"
+msgstr ""
+
+#: app/main/RTMedia.php:1428
+msgid "Uploaded"
+msgstr ""
+
+#: app/main/RTMedia.php:1429
+msgid "Uploading"
+msgstr ""
+
+#: app/main/RTMedia.php:1430
+msgid "Failed"
+msgstr ""
+
+#: app/main/RTMedia.php:1431
+msgid "Close"
+msgstr ""
+
+#: app/main/RTMedia.php:1434
+#: templates/media/media-single-edit.php:19
+msgid "Edit Media"
+msgstr ""
+
+#: app/main/RTMedia.php:1435
+msgid "Remove from queue"
+msgstr ""
+
+#: app/main/RTMedia.php:1436
+msgid "Add more files"
+msgstr ""
+
+#: app/main/RTMedia.php:1437
+msgid "File not supported"
+msgstr ""
+
+#: app/main/RTMedia.php:1438
+msgid "more"
+msgstr ""
+
+#: app/main/RTMedia.php:1439
+msgid "less"
+msgstr ""
+
+#: app/main/RTMedia.php:1440
+msgid "Read more"
+msgstr ""
+
+#: app/main/RTMedia.php:1441
+msgid "Show less"
+msgstr ""
+
+#: app/main/RTMedia.php:1443
+msgid "This media is uploaded. Are you sure you want to delete this media?"
+msgstr ""
+
+#: app/main/RTMedia.php:1463
+msgid "Featured media set successfully."
+msgstr ""
+
+#: app/main/RTMedia.php:1464
+msgid "Featured media removed successfully."
+msgstr ""
+
+#: app/main/RTMedia.php:1470
+msgid "Title:"
+msgstr ""
+
+#: app/main/RTMedia.php:1471
+msgid "Description:"
+msgstr ""
+
+#: app/main/RTMedia.php:1475
+msgid "Oops !! There's no media found for the request !!"
+msgstr ""
+
+#: app/main/RTMedia.php:1479
+msgid "Edit File Name"
+msgstr ""
+
+#: app/main/RTMedia.php:1491
+msgid "Privacy updated successfully."
+msgstr ""
+
+#: app/main/RTMedia.php:1492
+msgid "Couldn't change privacy, please try again."
+msgstr ""
+
+#: app/main/RTMedia.php:1530
+msgid "There are some uploads in progress. Do you want to cancel them?"
+msgstr ""
+
+#: app/main/RTMedia.php:1532
+msgid "Media upload is disabled. Please Enable at least one media type to proceed."
+msgstr ""
+
+#: app/main/RTMedia.php:1643
+msgid "Adding media in Comments is not allowed"
+msgstr ""
+
+#: app/main/templates/admin-pages-content.php:13
+msgid "You can consider rtMedia Team for following :"
+msgstr ""
+
+#: app/main/templates/admin-pages-content.php:17
+msgid "rtMedia Customization ( in Upgrade Safe manner )"
+msgstr ""
+
+#: app/main/templates/admin-pages-content.php:18
+msgid "WordPress/BuddyPress Theme Design and Development"
+msgstr ""
+
+#: app/main/templates/admin-pages-content.php:19
+msgid "WordPress/BuddyPress Plugin Development"
+msgstr ""
+
+#: app/main/templates/admin-pages-content.php:24
+msgid "Contact Us"
+msgstr ""
+
+#: app/main/templates/create-album-modal.php:13
+msgid "Create an Album"
+msgstr ""
+
+#: app/main/templates/create-album-modal.php:15
+msgid "Album Title : "
+msgstr ""
+
+#: app/main/templates/create-album-modal.php:19
+msgid "Album Description : "
+msgstr ""
+
+#: app/main/templates/media-group-create-screen.php:14
+#: app/main/templates/media-group-edit-screen.php:14
+msgid "Album Creation Control"
+msgstr ""
+
+#: app/main/templates/media-group-create-screen.php:16
+#: app/main/templates/media-group-edit-screen.php:16
+msgid "Who can create Albums in this group?"
+msgstr ""
+
+#: app/main/templates/media-group-create-screen.php:21
+#: app/main/templates/media-group-edit-screen.php:21
+msgid "All Group Members"
+msgstr ""
+
+#: app/main/templates/media-group-create-screen.php:25
+#: app/main/templates/media-group-edit-screen.php:25
+msgid "Group Admins and Mods only"
+msgstr ""
+
+#: app/main/templates/media-group-create-screen.php:29
+#: app/main/templates/media-group-edit-screen.php:29
+msgid "Group Admin only"
+msgstr ""
+
+#: app/main/templates/media-group-edit-screen.php:41
+#: app/main/templates/privacy-content.php:37
+#: templates/media/album-single-edit.php:69
+msgid "Save Changes"
+msgstr ""
+
+#: app/main/templates/media-pagination.php:15
+msgid "Go to page no : "
+msgstr ""
+
+#: app/main/templates/media-pagination.php:24
+msgid "Go"
+msgstr ""
+
+#: app/main/templates/media-upload-terms.php:16
+msgid "I agree to"
+msgstr ""
+
+#: app/main/templates/merge-album-modal.php:15
+msgid "Select Album to merge with : "
+msgstr ""
+
+#: app/main/templates/privacy-content.php:18
+msgid "Default Privacy"
+msgstr ""
+
+#: lib/deactivation-survey/deactivation-survey.php:58
+msgid "If you have a moment, please let us know why you are deactivating: "
+msgstr ""
+
+#: templates/main.php:70
+#: templates/main.php:143
+msgid "rtMedia menu"
+msgstr ""
+
+#: templates/media/album-gallery.php:26
+msgid "Album List"
+msgstr ""
+
+#: templates/media/album-gallery.php:108
+#: templates/media/album-gallery.php:137
+#: templates/media/media-gallery.php:101
+#: templates/media/media-single-edit.php:74
+msgid "Sorry !! There's no media found for the request !!"
+msgstr ""
+
+#: templates/media/album-single-edit.php:22
+msgid "Edit Album : "
+msgstr ""
+
+#: templates/media/album-single-edit.php:37
+msgid "Manage Media"
+msgstr ""
+
+#: templates/media/album-single-edit.php:53
+#: templates/media/media-single-edit.php:37
+msgid "Title : "
+msgstr ""
+
+#: templates/media/album-single-edit.php:58
+#: templates/media/media-single-edit.php:43
+msgid "Description: "
+msgstr ""
+
+#: templates/media/album-single-edit.php:71
+#: templates/media/media-single-edit.php:61
+msgid "Back"
+msgstr ""
+
+#: templates/media/album-single-edit.php:89
+msgid "Move Selected media to another album."
+msgstr ""
+
+#: templates/media/album-single-edit.php:90
+msgid "Move"
+msgstr ""
+
+#: templates/media/album-single-edit.php:93
+msgid "Delete Selected media from the album."
+msgstr ""
+
+#: templates/media/album-single-edit.php:100
+msgid "Move selected media to the album : "
+msgstr ""
+
+#: templates/media/album-single-edit.php:106
+msgid "Move Selected"
+msgstr ""
+
+#: templates/media/album-single-edit.php:129
+msgid "Prev"
+msgstr ""
+
+#: templates/media/album-single-edit.php:146
+msgid "The album is empty."
+msgstr ""
+
+#: templates/media/album-single-edit.php:156
+msgid "Sorry !! You can not edit this album."
+msgstr ""
+
+#: templates/media/media-gallery.php:27
+#: templates/media/media-gallery.php:63
+msgid "Media Gallery"
+msgstr ""
+
+#: templates/media/media-single-edit.php:60
+msgid "Save"
+msgstr ""
+
+#: templates/media/media-single-edit.php:68
+msgid "Sorry !! You do not have rights to edit this media"
+msgstr ""
+
+#: templates/media/media-single.php:75
+msgid "under"
+msgstr ""
+
+#: templates/media/media-single.php:212
+msgid "Sorry !! This media has been reported !!"
+msgstr ""
diff --git a/readme.txt b/readme.txt
index 4b3f5eb73..5617198f8 100644
--- a/readme.txt
+++ b/readme.txt
@@ -1,11 +1,11 @@
 === rtMedia for WordPress, BuddyPress and bbPress ===
-Contributors: rtcamp, mangeshp, sanket.parmar, pranalipatel, jignesh.nakrani, manishsongirkar36, kiranpotphode, yahil, 1naveengiri, bhargavbhandari90, raftaar1191, rittesh.patel, sagarjadhav, pushpak.pop, faishal, desaiuditd, rahul286, JoshuaAbenazer, gagan0123, saurabhshukla, nitun.lanjewar, umesh.nevase, suhasgirgaonkar, neerukoul, hrishiv90, kanakiyajay, jarretc, tobiaskluge, rafaelfunchal, UmeshSingla, mehulkaklotar, tannermirabel, kishores, chandrapatel, rahul3883, nomnom99, sayanchakraborty, milindmore22, thrijith, abhijitrakas, sid177, montu3366, jashwini, juhise, ravatparmar, dharmin16, malavvasita, pooja1210, krupajnanda, surajkumarsingh, kanumalivad, dishitpala, shobhit2412, vaishu.agola27, kapilpaul, opurockey, vkd007, pavanpatil1, pradeep1308, shardul200, sabbir1991, kamalahmed, ibnulk, harshbarach, Mukulsingh27, vishalkakadiya, elifvish, krupajnanda, utsavladani, krishana79, rohitmathur7
+Contributors: rtcamp, mangeshp, sanket.parmar, pranalipatel, jignesh.nakrani, manishsongirkar36, kiranpotphode, yahil, 1naveengiri, bhargavbhandari90, raftaar1191, rittesh.patel, sagarjadhav, pushpak.pop, faishal, desaiuditd, rahul286, JoshuaAbenazer, gagan0123, saurabhshukla, nitun.lanjewar, umesh.nevase, suhasgirgaonkar, neerukoul, hrishiv90, kanakiyajay, jarretc, tobiaskluge, rafaelfunchal, UmeshSingla, mehulkaklotar, tannermirabel, kishores, chandrapatel, rahul3883, nomnom99, sayanchakraborty, milindmore22, thrijith, abhijitrakas, sid177, montu3366, jashwini, juhise, ravatparmar, dharmin16, malavvasita, pooja1210, krupajnanda, surajkumarsingh, kanumalivad, dishitpala, shobhit2412, vaishu.agola27, kapilpaul, opurockey, vkd007, pavanpatil1, pradeep1308, shardul200, sabbir1991, kamalahmed, ibnulk, harshbarach, Mukulsingh27, vishalkakadiya, elifvish, krupajnanda, utsavladani, krishana79, rohitmathur7, kuldipchaudhary, mchirag2002, vedantgandhi28
 Tags: BuddyPress, media, multimedia, album, audio, music, video, photo, upload, share, MediaElement.js, media-node, rtMedia, WordPress, bbPress, masonry
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
-Requires at least: WordPress 4.1
-Tested up to: 6.8.1
-Stable tag: 4.7.3
+Requires at least: 4.1
+Tested up to: 6.8
+Stable tag: 4.7.4
 
 Add albums, photo, audio/video upload, privacy, sharing, front-end uploads & more. All this works on mobile/tablets devices.
 
@@ -33,7 +33,7 @@ http://www.youtube.com/watch?v=dJrykKQGDcs
  2. **BuddyPress Integration** - Find a new media tab under BuddyPress Profiles & Groups.
  3. **BuddyPress Activity Stream** - Attach media to activity status updates just like Facebook.
  4. **Albums** - Organise media into manageable collections. BuddyPress Group albums support collaboration.
- 5. **Responsive** - Album Slideshow (Lightbox), video player, uploads work on mobiles & tablets. Support for swipe guestures.
+ 5. **Responsive** - Album Slideshow (Lightbox), video player, uploads work on mobiles & tablets. Support for swipe gestures.
  6. **Privacy** - Control who can see media files, albums and BuddyPress activities.
  7. **Templating system** - Completely customise rtMedia by modifying the template files. Just copy over the template folder to your theme.
  8. **[Featured Media](https://rtmedia.io/docs/developers/featured-media/?utm_source=readme&utm_medium=plugin&utm_campaign=buddypress-media "Featured Media documentation")** - This can be used for facebook-style cover photo on profiles.
@@ -88,7 +88,7 @@ rtMedia has a premium solution to take care of audio/video conversion.
 
 = Important Links =
 
-* [Project Homepage](https://rtmedio.io/?utm_source=readme&utm_medium=plugin&utm_campaign=buddypress-media "Visit rtMedia's Project Homepage")
+* [Project Homepage](https://rtmedia.io/?utm_source=readme&utm_medium=plugin&utm_campaign=buddypress-media "Visit rtMedia's Project Homepage")
 * [Roadmap](https://rtmedia.io/roadmap/?utm_source=readme&utm_medium=plugin&utm_campaign=buddypress-media "Visit rtMedia's Roadmap page")
 * [Documentation](https://rtmedia.io/docs/?utm_source=readme&utm_medium=plugin&utm_campaign=buddypress-media "Visit rtMedia's Documentation page")
 * [FAQ](https://rtmedia.io/faq/?utm_source=readme&utm_medium=plugin&utm_campaign=buddypress-media "Visit rtMedia's FAQ page")
@@ -120,7 +120,7 @@ http://www.youtube.com/watch?v=dJrykKQGDcs
 3.  Media Types Settings
 4.  Media Size Settings
 5.  Privacy Settings
-6.  Other Setiings
+6.  Other Settings
 7.  Export/Import Settings
 8.  Media View
 9.  Album View
@@ -133,6 +133,15 @@ http://www.youtube.com/watch?v=dJrykKQGDcs
 
 == Changelog ==
 
+= 4.7.4 [October 30, 2025] =
+* FIXED
+  * Apply security recommendations and fixes.
+  * Restrict the media upload by its types based on selected tab in rtMedia gallery.
+
+* ENHANCEMENT
+  * Enhances media upload support by adding a broader set of commonly used video and audio formats.
+  * Replace PHP file system functions with WordPress alternative filesystem function to enhance security.
+
 = 4.7.3 [September 12, 2025] =
 
 * FIXED
@@ -2027,7 +2036,7 @@ rtMedia includes [full translation support](https://rtmedia.io/docs/translations
 rtMedia uses the following projects/sources for some functionality
 
 * [MediaElement.js](http://mediaelementjs.com/) for html5 audio/video player
-* [Maginific Popup](http://dimsemenov.com/plugins/magnific-popup/) for responsive lightbox
+* [Magnific Popup](http://dimsemenov.com/plugins/magnific-popup/) for responsive lightbox
 * [getID3](http://getid3.sourceforge.net/) gets us some ID tags for the media
 * [Foundation](http://foundation.zurb.com/) for the media grid and layout
 * [Backbone.js](http://backbonejs.org/) for an MVC architecture for the frontend
diff --git a/templates/media/album-gallery-item.php b/templates/media/album-gallery-item.php
index 35ceff425..445c4a81d 100755
--- a/templates/media/album-gallery-item.php
+++ b/templates/media/album-gallery-item.php
@@ -12,8 +12,8 @@
 	'is_album'        => false,
 	'is_edit_allowed' => false,
 );
+// todo: nonce verification. -- Ignored for now, because code has been refactored and variables below are not being used anymore.
 
-// todo: nonce verification.
 $rtmedia_backbone['backbone'] = filter_input( INPUT_POST, 'backbone', FILTER_VALIDATE_BOOLEAN );
 
 $is_album = filter_input( INPUT_POST, 'is_album', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY );
diff --git a/templates/media/media-gallery-item.php b/templates/media/media-gallery-item.php
index d8c3e98de..f1bb2048f 100755
--- a/templates/media/media-gallery-item.php
+++ b/templates/media/media-gallery-item.php
@@ -12,7 +12,8 @@
 	'is_album'        => false,
 	'is_edit_allowed' => false,
 );
-// todo: nonce verification.
+// todo: nonce verification. -- Ignored for now, because code has been refactored and variables below are not being used anymore.
+
 $rtmedia_backbone['backbone'] = filter_input( INPUT_POST, 'backbone', FILTER_VALIDATE_BOOLEAN );
 
 $is_album = filter_input( INPUT_POST, 'is_album', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY );
@@ -44,7 +45,6 @@
 		if ( ! empty( $rtmedia_query ) && isset( $rtmedia_query->rtmedia ) ) {
 			$rtmedia_media = $rtmedia_query->rtmedia;
 		}
-
 		$allowed_html = array(
 			'span' => array(
 				'class' => array(),
diff --git a/templates/upload/comment-media.php b/templates/upload/comment-media.php
index 48c68f029..531ca193a 100644
--- a/templates/upload/comment-media.php
+++ b/templates/upload/comment-media.php
@@ -54,6 +54,8 @@
 					}
 				}
 
+				wp_nonce_field( 'rtmedia_file_nonce', 'wp_nonce' );
+
 				if ( isset( $attr['rtmedia_upload_allow_multiple'] ) && true === $attr['rtmedia_upload_allow_multiple'] ) {
 					?>
 					<div class="rtm-file-input-container"><p class="rtmedia-file-upload-p"><input type="file" name="rtmedia_file_multiple[]" multiple="true" class="rtm-simple-file-input" id="rtmedia_simple_file_input<?php echo esc_attr( $main_id ); ?>" /></p></div>
diff --git a/templates/upload/uploader.php b/templates/upload/uploader.php
index c781bdaee..3e408192c 100755
--- a/templates/upload/uploader.php
+++ b/templates/upload/uploader.php
@@ -78,6 +78,8 @@ function rtmedia_uploader_hidden_fields( $key, $value ) {
 					}
 				}
 
+				wp_nonce_field( 'rtmedia_file_nonce', 'wp_nonce' );
+
 				if ( isset( $attr['rtmedia_upload_allow_multiple'] ) && true === $attr['rtmedia_upload_allow_multiple'] ) {
 					?>
 					<div class="rtm-file-input-container">
@@ -112,7 +114,7 @@ function rtmedia_uploader_hidden_fields( $key, $value ) {
 		} else {
 			?>
 			<div class="rtmedia-uploader no-js">
-				<div id="rtmedia-uploader-form">
+				<div id="rtmedia-uploader-form" <?php echo isset( $attr['media_type'] ) ? 'data-media-type="' . esc_attr( $attr['media_type'] ) . '"' : ''; ?>>
 					<?php do_action( 'rtmedia_before_uploader' ); ?>
 
 					<div class="rtm-tab-content-wrapper">