0
Validation results

Boke X

Boke X

WordPress 6.5.4 theme
0
  • THEME TYPEWordPress theme 6.5.4
  • FILE NAMEboke-x.zip
  • FILE SIZE2784140 bytes
  • MD5ea8ecc6b170769081f885e96e9cd25c1
  • SHA116fca086e3d626c956d135f2a68f8a23f4771e4b
  • LICENSEGNU GPL 2
  • FILES INCLUDEDCSS, PHP, HTML, Bitmap images, Adobe Photoshop
  • THEME URIhttps://www.zhutibaba.com/themes/bokex
  • VERSION1.0.0
  • AUTHOR URI
  • TAGSone-column, two-columns, right-sidebar, flexible-header, custom-colors, custom-header, custom-menu, custom-logo, editor-style, featured-images, footer-widgets, sticky-post, theme-options, threaded-comments, translation-ready
  • CREATION DATE2020-03-01
  • LAST FILE UPDATE2020-03-01
  • LAST VALIDATION2020-03-01 06:47
This theme seems to be proprietary. Themecheck doesn't distribute commercial themes.
Critical alerts
  1. Security breaches : Use of backticks execution operators in PHP code Found ` in file thumb.php. 768: $out = `$exec -o1 $tempfile`; //you can use up to -o7 but it really slows things d783: $out = `$exec $tempfile $tempfile2`;975: $out = `$command`;
  2. Security breaches : Use of base64_decode() Found base64_decode in file thumb.php. 227: $imgData = base64_decode('R0lGODlhUAAMAIAAAP8AAP///yH5BAAHAP8ALAAAAABQAAwAAAJpjI+py+0P
  3. Malware : Operations on file system fopen was found in the file thumb.php 805: $fp = fopen($tempfile,'r',0,$context);812: $fh = fopen($lockFile, 'w');1036: $fp = fopen($this->cachefile, 'rb');1182: self::$curlFH = fopen($tempfile, 'w');file_put_contents was found in the file thumb.php 806: file_put_contents($tempfile4, $this->filePrependSecurityBlock . $imgType . 807: file_put_contents($tempfile4, $fp, FILE_APPEND);1232: if(! file_put_contents($tempfile, $img)){file_put_contents was found in the file thumb.php 806: file_put_contents($tempfile4, $this->filePrependSecurityBlock . $imgType . 807: file_put_contents($tempfile4, $fp, FILE_APPEND);1232: if(! file_put_contents($tempfile, $img)){fclose was found in the file thumb.php 808: fclose($fp);820: fclose($fh);823: fclose($fh);1048: fclose($fp);1200: fclose(self::$curlFH);fopen was found in the file thumb.php 805: $fp = fopen($tempfile,'r',0,$context);812: $fh = fopen($lockFile, 'w');1036: $fp = fopen($this->cachefile, 'rb');1182: self::$curlFH = fopen($tempfile, 'w');fclose was found in the file thumb.php 808: fclose($fp);820: fclose($fh);823: fclose($fh);1048: fclose($fp);1200: fclose(self::$curlFH);fclose was found in the file thumb.php 808: fclose($fp);820: fclose($fh);823: fclose($fh);1048: fclose($fp);1200: fclose(self::$curlFH);fwrite was found in the file thumb.php 1022: fwrite(self::$curlFH, $d);fopen was found in the file thumb.php 805: $fp = fopen($tempfile,'r',0,$context);812: $fh = fopen($lockFile, 'w');1036: $fp = fopen($this->cachefile, 'rb');1182: self::$curlFH = fopen($tempfile, 'w');fread was found in the file thumb.php 1039: $imgType = fread($fp, 3);fclose was found in the file thumb.php 808: fclose($fp);820: fclose($fh);823: fclose($fh);1048: fclose($fp);1200: fclose(self::$curlFH);file_get_contents was found in the file thumb.php 1052: $content = file_get_contents ($this->cachefile);1056: $this->debug(3, 'Served using file_get_contents and echo');1218: $img = @file_get_contents ($url);1253: $content = @file_get_contents ($file);fopen was found in the file thumb.php 805: $fp = fopen($tempfile,'r',0,$context);812: $fh = fopen($lockFile, 'w');1036: $fp = fopen($this->cachefile, 'rb');1182: self::$curlFH = fopen($tempfile, 'w');fclose was found in the file thumb.php 808: fclose($fp);820: fclose($fh);823: fclose($fh);1048: fclose($fp);1200: fclose(self::$curlFH);file_get_contents was found in the file thumb.php 1052: $content = file_get_contents ($this->cachefile);1056: $this->debug(3, 'Served using file_get_contents and echo');1218: $img = @file_get_contents ($url);1253: $content = @file_get_contents ($file);file_put_contents was found in the file thumb.php 806: file_put_contents($tempfile4, $this->filePrependSecurityBlock . $imgType . 807: file_put_contents($tempfile4, $fp, FILE_APPEND);1232: if(! file_put_contents($tempfile, $img)){readfile was found in the file thumb.php 1249: $bytes = @readfile($file);file_get_contents was found in the file thumb.php 1052: $content = file_get_contents ($this->cachefile);1056: $this->debug(3, 'Served using file_get_contents and echo');1218: $img = @file_get_contents ($url);1253: $content = @file_get_contents ($file);
  4. Malware : Network operations curl_init was found in the file thumb.php 1180: if(function_exists('curl_init')){1189: $curl = curl_init($url);curl_exec was found in the file thumb.php 1199: $curlResult = curl_exec($curl);
  5. Admin menu : Themes should use add_theme_page() for adding admin pages. File categories-images.php : 272: add_options_page(__('Categories Images settings', 'categories-images'), __(
  6. Hidden admin bar : Hidden admin Bar Themes should not hide admin bar. Detected in file : template-tags.php.
  7. Deprecated functions : screen_icon screen_icon found in file categories-images.php. Deprecated since version 3.8.309: <?php screen_icon(); ?>
  8. Deprecated functions : get_option get_option( 'home' ) was found in the file no-category-base.php. Use home_url() instead.137: $catlink = trailingslashit( get_option( 'home' ) ) . user_trailingslashit( $query_vars['category_redire
Warning
  1. theme tags : Presence of bad theme tagsFound wrong tag custom-logo in style.css header.
  2. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are boke-x, categories-images.
  3. Plugin territory : Plugin territory functionalitiesThe theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  4. Line endings consistency : Both DOS and UNIX style line endingsFound a mix of \r\n and \n line endings in file timthumb_ext_f69e4e0c9f5e60ff63f08d28c5521dc0.timthumb.txt.Found a mix of \r\n and \n line endings in file timthumb_ext_fea7c01d0443c069a3f2aba2a992eb39.timthumb.txt.
  5. Hidden admin bar : Hidden admin Bar in CSSThemes should not hide admin bar. Detected in file style.css.
  6. Deprecated functions : screen_iconscreen_icon found in file categories-images.php. Deprecated since version 3.8.309: <?php screen_icon(); ?>
  7. I18N implementation : Proper use of ___all(Possible variable $section found in translation function in customizer-options.php. Translation function calls should not contain PHP variables.
  8. Screenshot : Screenshot fileBad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  2. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  3. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  4. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  5. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  6. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  7. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  8. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  9. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  10. Use of includes : Use of include or requireThe theme appears to use include or require : thumb.php 25: if( file_exists(dirname(__FILE__) . '/timthumb-config.php')) require_once('timthumb-config.php'); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes