diff --git a/public_html/wp-content/mu-plugins/camptix-tweaks/addons/ticket-types/ticket-types.php b/public_html/wp-content/mu-plugins/camptix-tweaks/addons/ticket-types/ticket-types.php
index b8fa771856..ab8edba803 100644
--- a/public_html/wp-content/mu-plugins/camptix-tweaks/addons/ticket-types/ticket-types.php
+++ b/public_html/wp-content/mu-plugins/camptix-tweaks/addons/ticket-types/ticket-types.php
@@ -165,7 +165,7 @@ function save_post( $post_id ) {
 	check_admin_referer( $nonce_action );
 
 	if ( isset( $_POST['tix_type'] ) ) {
-		$value = filter_input( INPUT_POST, 'tix_type', FILTER_SANITIZE_STRING );
+		$value = filter_input( INPUT_POST, 'tix_type', FILTER_UNSAFE_RAW );
 		update_post_meta( $post_id, META_KEY, $value );
 	}
 }
diff --git a/public_html/wp-content/plugins/camptix/addons/payment-stripe.php b/public_html/wp-content/plugins/camptix/addons/payment-stripe.php
index 9cdcd55238..b99c74819a 100644
--- a/public_html/wp-content/plugins/camptix/addons/payment-stripe.php
+++ b/public_html/wp-content/plugins/camptix/addons/payment-stripe.php
@@ -558,7 +558,7 @@ public function send_refund_request( $payment_token ) {
 		}
 
 		$metadata = array(
-			'Refund reason' => filter_input( INPUT_POST, 'tix_refund_request_reason', FILTER_SANITIZE_STRING ),
+			'Refund reason' => filter_input( INPUT_POST, 'tix_refund_request_reason', FILTER_UNSAFE_RAW ),
 		);
 
 		// Create a new Idempotency token for the refund request.
diff --git a/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-meetup-details.php b/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-meetup-details.php
index 1830117cb2..ec09dcfa95 100644
--- a/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-meetup-details.php
+++ b/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-meetup-details.php
@@ -235,7 +235,7 @@ public static function render_available_fields( $context = 'public', array $fiel
 	 */
 	public static function export_to_file() {
 
-		$fields = filter_input( INPUT_POST, 'fields', FILTER_SANITIZE_STRING, array( 'flags' => FILTER_REQUIRE_ARRAY ) );
+		$fields = filter_input( INPUT_POST, 'fields', FILTER_UNSAFE_RAW, array( 'flags' => FILTER_REQUIRE_ARRAY ) );
 		$action = filter_input( INPUT_POST, 'action' );
 		$nonce  = filter_input( INPUT_POST, self::$slug . '-nonce' );
 
diff --git a/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-meetup-status.php b/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-meetup-status.php
index eb71232b25..8b4b07e24e 100644
--- a/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-meetup-status.php
+++ b/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-meetup-status.php
@@ -324,7 +324,7 @@ public static function render_admin_page() {
 		$refresh    = filter_input( INPUT_POST, 'refresh', FILTER_VALIDATE_BOOLEAN );
 		$action     = filter_input( INPUT_POST, 'action' );
 		$nonce      = filter_input( INPUT_POST, self::$slug . '-nonce' );
-		$fields     = filter_input( INPUT_POST, 'fields', FILTER_SANITIZE_STRING, array( 'flags' => FILTER_REQUIRE_ARRAY ) );
+		$fields     = filter_input( INPUT_POST, 'fields', FILTER_UNSAFE_RAW, array( 'flags' => FILTER_REQUIRE_ARRAY ) );
 		$statuses   = Meetup_Application::get_post_statuses();
 
 		$field_defaults = array(
diff --git a/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-wordcamp-details.php b/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-wordcamp-details.php
index 0d03f64205..4193e66846 100644
--- a/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-wordcamp-details.php
+++ b/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-wordcamp-details.php
@@ -408,7 +408,7 @@ public static function render_admin_page() {
 	public static function export_to_file() {
 		$start_date = filter_input( INPUT_POST, 'start-date' );
 		$end_date   = filter_input( INPUT_POST, 'end-date' );
-		$fields     = filter_input( INPUT_POST, 'fields', FILTER_SANITIZE_STRING, array( 'flags' => FILTER_REQUIRE_ARRAY ) );
+		$fields     = filter_input( INPUT_POST, 'fields', FILTER_UNSAFE_RAW, array( 'flags' => FILTER_REQUIRE_ARRAY ) );
 		$action     = filter_input( INPUT_POST, 'action' );
 		$nonce      = filter_input( INPUT_POST, self::$slug . '-nonce' );
 
diff --git a/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-wordcamp-status.php b/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-wordcamp-status.php
index 439d6ed9ff..acbdd903cb 100644
--- a/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-wordcamp-status.php
+++ b/public_html/wp-content/plugins/wordcamp-reports/classes/report/class-wordcamp-status.php
@@ -493,7 +493,7 @@ public static function export_to_file() {
 		$start_date = filter_input( INPUT_POST, 'start-date' );
 		$end_date   = filter_input( INPUT_POST, 'end-date' );
 		$status     = filter_input( INPUT_POST, 'status' );
-		$fields     = filter_input( INPUT_POST, 'fields', FILTER_SANITIZE_STRING, array( 'flags' => FILTER_REQUIRE_ARRAY ) );
+		$fields     = filter_input( INPUT_POST, 'fields', FILTER_UNSAFE_RAW, array( 'flags' => FILTER_REQUIRE_ARRAY ) );
 		$refresh    = filter_input( INPUT_POST, 'refresh', FILTER_VALIDATE_BOOLEAN );
 		$action     = filter_input( INPUT_POST, 'action' );
 		$nonce      = filter_input( INPUT_POST, self::$slug . '-nonce' );
diff --git a/public_html/wp-content/plugins/wordcamp-reports/index.php b/public_html/wp-content/plugins/wordcamp-reports/index.php
index 4d748a1fbe..490bd81d41 100644
--- a/public_html/wp-content/plugins/wordcamp-reports/index.php
+++ b/public_html/wp-content/plugins/wordcamp-reports/index.php
@@ -215,7 +215,7 @@ function add_reports_page() {
  * @return void
  */
 function render_page() {
-	$report       = filter_input( INPUT_GET, 'report', FILTER_SANITIZE_STRING );
+	$report       = filter_input( INPUT_GET, 'report', FILTER_UNSAFE_RAW );
 	$report_class = get_report_class_by_slug( $report );
 
 	$reports_with_admin = array_filter(
@@ -255,7 +255,7 @@ function enqueue_admin_assets( $hook_suffix ) {
 		filemtime( get_assets_dir_path() . 'css/admin-common.css' )
 	);
 
-	$report       = filter_input( INPUT_GET, 'report', FILTER_SANITIZE_STRING );
+	$report       = filter_input( INPUT_GET, 'report', FILTER_UNSAFE_RAW );
 	$report_class = get_report_class_by_slug( $report );
 
 	if ( ! is_null( $report_class ) && method_exists( $report_class, 'enqueue_admin_assets' ) ) {