0
Validation results

Foodica

Free WordPress 6.0.1 theme

Foodica

Free WordPress 6.0.1 theme
0
This theme is open source.
Critical alerts
  1. Security breaches : Modification of PHP server settings Found ini_set in file class-wpzoom-importer.php. 297: ini_set( 'output_buffering', 'off' );298: ini_set( 'zlib.output_compression', false );
  2. Security breaches : Use of base64_decode() Found base64_decode in file class-wpzoom-demo-importer.php. 388: $options_data = ( isset( $_POST['options_data'] ) ) ? (array) unserialize( stripslashes( base64_decode( $_POST['options_data'] ) ) ) : $options_data; // phpcs:ignor445: $widgets_data = ( isset( $_POST['widgets_data'] ) ) ? (object) unserialize( stripslashes( base64_decode( $_POST['widgets_data'] ) ) ) : (object) $widgets_data; // phFound base64_decode in file option.php. 250: $xoptions = unserialize( stripslashes( base64_decode( $xoptions ) ) );374: $options = unserialize( stripslashes( base64_decode( $options ) ) );
  3. Security breaches : Use of base64_encode() Found base64_encode in file class-wpzoom-demo-import.php.
     $mods           = base64_encode( serialize( get_theme_mods() ) ); // phpcs:ignore
     $options        = base64_encode( serialize( wp_load_alloptions() ) ); // phpcs:ignore
    Found base64_encode in file class-wpzoom-demo-importer.php.
     $encoded_options_data = base64_encode( serialize( $options_data ) ); // phpcs:ignore
    Found base64_encode in file option.php.
     return base64_encode( serialize( self::getOptions() ) );
     return base64_encode( serialize( self::getWidgetOptions() ) );
  4. Unwanted files : hidden file(s) or folder(s) .phpcs.xml.dist was found.
  5. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe src="https://www.wpzoom.com/frame/welcome/" width="1" height="1"> in file welcome.php. 1: <iframe src='https://www.wpzoom.com/frame/welcome/' width='1' height='1'></Found <iframe src="https://www.wpzoom.com/frame/" width="100%" height="1790"> in file themes.php. 14: <iframe src='https://www.wpzoom.com/frame/' width='100%' height='1790'></if
  6. Malware : Operations on file system file_get_contents was found in the file settings-page.php 404: $settings = file_get_contents( $settingsFile );file_get_contents was found in the file helpers.php 1220: $result['encoded'] = file_get_contents( $google_fonts_json );
  7. Admin menu : Themes should use add_theme_page() for adding admin pages. File theme-updater-admin.php : 236: add_submenu_page(File admin.php : 123: add_menu_page( __( 'Page Title', 'wpzoom' ), __( 'WPZOOM', 'wpzoom' ), 'manFile admin.php : 125: add_submenu_page( 'wpzoom_options', __( 'WPZOOM', 'wpzoom' ), __( 'Theme Op129: add_submenu_page( 'wpzoom_options', __( 'Customize', 'wpzoom' ), __( 'Custo133: add_submenu_page( 'wpzoom_options', __( 'Update Framework', 'wpzoom' ), __(137: add_submenu_page( 'wpzoom_options', __( 'New Themes', 'wpzoom' ), __( 'New File admin.php : 125: add_submenu_page( 'wpzoom_options', __( 'WPZOOM', 'wpzoom' ), __( 'Theme Op129: add_submenu_page( 'wpzoom_options', __( 'Customize', 'wpzoom' ), __( 'Custo133: add_submenu_page( 'wpzoom_options', __( 'Update Framework', 'wpzoom' ), __(137: add_submenu_page( 'wpzoom_options', __( 'New Themes', 'wpzoom' ), __( 'New File admin.php : 125: add_submenu_page( 'wpzoom_options', __( 'WPZOOM', 'wpzoom' ), __( 'Theme Op129: add_submenu_page( 'wpzoom_options', __( 'Customize', 'wpzoom' ), __( 'Custo133: add_submenu_page( 'wpzoom_options', __( 'Update Framework', 'wpzoom' ), __(137: add_submenu_page( 'wpzoom_options', __( 'New Themes', 'wpzoom' ), __( 'New File admin.php : 125: add_submenu_page( 'wpzoom_options', __( 'WPZOOM', 'wpzoom' ), __( 'Theme Op129: add_submenu_page( 'wpzoom_options', __( 'Customize', 'wpzoom' ), __( 'Custo133: add_submenu_page( 'wpzoom_options', __( 'Update Framework', 'wpzoom' ), __(137: add_submenu_page( 'wpzoom_options', __( 'New Themes', 'wpzoom' ), __( 'New File wpzoom-featured-posts.php : 23: add_action( 'admin_menu', array( $this, 'add_featured_page_in_menu' ) );72: public function add_featured_page_in_menu() {73: $this->menu_names[ $this->post_type ] = $this->add_featured_page(82: public function add_featured_page( $page_title, $menu_title, $capability, $menu_slug, $funcFile wpzoom-featured-posts.php : 85: return add_submenu_page( $link, $page_title, $menu_title, $capability, $menu_slug,File class-wpzoom-onboarding.php : 121: add_submenu_page(File class-tgm-plugin-activation.php : 731: $this->page_hook = call_user_func( 'add_submenu_page', $args['parent_slug'], $args['page_title'], $args['menu_t
  8. Deprecated functions : get_bloginfo get_bloginfo('template_url') was found in the file header.php. Use get_template_directory_uri() instead.11: <link rel='preload' as='font' href='<?php echo get_bloginfo('template_url'); ?>/fonts/foodica.ttf' type='font/ttf' crossor
  9. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was foodica-child.zip.
Warning
  1. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments '_license_deactivate' in file theme-updater-admin.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments 'deactivate-license' in file theme-updater-admin.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments '_license_activate' in file theme-updater-admin.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments 'activate-license' in file theme-updater-admin.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are wpzoom, wordpress-importer, tgmpa, .
  2. Plugin territory : Plugin territory functionalitiesThe theme uses the register_post_type() function, which is plugin-territory functionality.The theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  3. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  4. I18N implementation : Proper use of _e(Possible variable $this found in translation function in theme-updater-admin.php. Translation function calls should not contain PHP variables. Possible variable $strings found in translation function in theme-updater-admin.php. Translation function calls should not contain PHP variables. Possible variable $this found in translation function in theme-updater-admin.php. Translation function calls should not contain PHP variables. Possible variable $strings found in translation function in theme-updater-admin.php. Translation function calls should not contain PHP variables.
  5. I18N implementation : Proper use of esc_attr_e(Possible variable $this found in translation function in theme-updater-admin.php. Translation function calls should not contain PHP variables. Possible variable $strings found in translation function in theme-updater-admin.php. Translation function calls should not contain PHP variables. Possible variable $this found in translation function in theme-updater-admin.php. Translation function calls should not contain PHP variables. Possible variable $strings found in translation function in theme-updater-admin.php. Translation function calls should not contain PHP variables.
  6. Screenshot : Screenshot fileBad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file bio.php.99: <p class='description'>This will be used for profile picture. If you don't have a Gravatar account, create one on <a href='http://gravatar.com' target='_blank'>gravatar.com</a></p>Possible hard-coded links were found in the file featured-category-home.php.226: <p class='description'>If this option doesn't work, <a href='https://www.wpzoom.com/tutorial/fixing-stretched-images/' target='_blank'>rPossible hard-coded links were found in the file options.php.76: 'desc' => sprintf('This feature depends on <a href='http://jetpack.me' target='_blank'>Jetpack</a>, please install it first andPossible hard-coded links were found in the file admin.php.15: <p><?php _e( 'Can\'t save options. Please contact <a href='https://wpzoom.com/support/'>WPZOOM Support</a>.', 'wpzoom' ); ?></p>47: <a href='https://www.wpzoom.com/support/' target='_blank'><?php _e( 'Support Desk', Possible hard-coded links were found in the file news.php.13: <li><a href='https://www.wpzoom.com/themes/'><?php _e( 'More Themes', 'wpzoom' ); ?></a>14: <li><a href='https://www.wpzoom.com/support/'><?php _e( 'Support', 'wpzoom' ); ?></a></l15: <li><a href='https://www.wpzoom.com/category/showcase/'><?php _e( 'Theme Showcase', 'wpzPossible hard-coded links were found in the file update.php.24: <p><?php _e( '<strong>NOTICE:</strong> <em>Updating the framework will not affect any of the changes or customization you have made to the theme or to your website. For more information visit this <a href='https://www.wpzoom.com/docs/using-the-zoom-framework-automatic-updates/' taPossible hard-coded links were found in the file dashboard.php.41: <a href='https://www.wpzoom.com/themes/' target='_blank' alt='<?php _e( 'Browse our Possible hard-coded links were found in the file theme-updater-admin.php.109: 'content' => __( 'If you’re installing the theme on a new site, installing the demo content is the best way to get familiarized. This feature can be found on the <a href='admin.php?page=wpzoom_options' target='_blank'>Theme Options</a> page, in t112: '<a class='button button-secondary' href='admin.php?page=wpzoom_options' target='_blank'>Open Theme Options</a>',281: echo sprintf( __( 'Enter your license key to enable <strong>1-click theme updates</strong>. You can find your license in <a href='https://www.wpzoom.com/account/licenses/' target='_blank'>WPZOOM Members Ar537: $message = sprintf( __( '<strong>Your theme license key has reached its activation limit. Please %1$supgrade%2$s your license or contact WPZOOM if you have an unlimited license.</strong>', 'wpzoom' ), '<a href='' . esc_url( 'https://www.wpzoom.com/account/licenses/' ) . '' target='_blank'>', '</a>' 348: <a href='https://twitter.com/wpzoom' class='twitter-follow-button'>Follow @wpzoom</aPossible hard-coded links were found in the file settings-page.php.227: 'content' => __( '<p>Some themes provide customization options that are grouped together on a Theme Options screen. If you change themes, options may change or disappear, as they are theme-specific. </p><p>Your current theme is running on <a href='https://www.wpzoom.com/framework-tour/' target='_blank'>ZOOM Framework</a>.232: '<p>' . __( '<a href='https://www.wpzoom.com/support/documentation' target='_blank'>Documentation232: '<p>' . __( '<a href='https://www.wpzoom.com/support/documentation' target='_blank'>Documentation233: '<p>' . __( '<a href='https://www.wpzoom.com/support/' target='_blank'>Support Desk</a>', 'wpzoomPossible hard-coded links were found in the file demo-importer.php.37: $desc .= '<p class='description nofloat' style='width:100%; margin-bottom:20px;'>' . sprintf( __( 'If the importer doesn\'t work for you, try importing the demo content %1$smanually%2$s.', 'wpzoom' ), '<a href='https://www.wpzoom.com/theme-demo-content/' target='_blank'>', '</a>' ) . 'Possible hard-coded links were found in the file class-wpzoom-onboarding.php.475: <a href='https://www.wpzoom.com/go/elementor/' title='$label_elementor_button' targe557: <a href='https://www.wpzoom.com/documentation/' title='$label_docs_button' target='_573: <a href='https://wpzoom.com/support/tickets/' title='$label_assist_button' target='_587: <a href='https://wpzoom.com/video/' title='$label_newwp_button' class='button'>$labe601: <a href='https://twitter.com/wpzoom' target='_blank' title='$label_follow_button1' c602: <a href='https://facebook.com/wpzoom' target='_blank' title='$label_follow_button2' 603: <a href='https://instagram.com/wpzoom' target='_blank' title='$label_follow_button3'573: <a href='https://wpzoom.com/support/tickets/' title='$label_assist_button' target='_587: <a href='https://wpzoom.com/video/' title='$label_newwp_button' class='button'>$labe636: <h3 class='{$class_prefix}footer-logo'><a href='https://wpzoom.com/' title='$label_wpzoom'>$label_wpzoom</a></h3>639: <li class='{$class_prefix}footer-links-themes'><a href='https://www.wpzoom.com/themes/' target='_blank' title='$label_themes'>$lab640: <li class='{$class_prefix}footer-links-plugins'><a href='https://www.wpzoom.com/plugins/' target='_blank' title='$label_plugins'>$l641: <li class='{$class_prefix}footer-links-blog'><a href='https://www.wpzoom.com/blog/' target='_blank' title='$label_blog'>$label_bl642: <li class='{$class_prefix}footer-links-support'><a href='https://www.wpzoom.com/support/' target='_blank' title='$label_support'>$laPossible hard-coded links were found in the file wpzoom-theme-setup.php.586: $out .= sprintf( __( '<p><a href='%s' target='_blank'>Edit Menus structure</a></p><p>You can find more instructions in this <a href='https://www.wpzoom.com/docs/set-up-navigation-menus/' target='_blank'>videoPossible hard-coded links were found in the file wpzoom-giphy-controller.php.139: <p class='description'><?php _e( 'This feature is powered by <strong>GIPHY</strong> and works only with YouTube videos shorter than <strong>15 minutes</strong> and Vimeo videos which are available for Download. <a href='https://www.wpzoom.com/docs/adding-background-videos-on-hover/' target='_blPossible hard-coded links were found in the file wpzoom-self-hosted-controller.php.86: video using <a href='https://giphy.com/create/gifmaker/' target='_blank'>GIF Maker</a> tool fromPossible hard-coded links were found in the file footer.php.80: <span class='designed-by'><?php printf( __( '&mdash; Designed by %s', 'wpzoom' ), '<a href='https://www.wpzoom.com/' target='_blank' rel='nofollow'>WPZOOM</a>' ); ?></
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  6. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  7. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  8. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  9. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  10. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  11. Use of includes : Use of include or requireThe theme appears to use include or require : settings-page.php 563: include 'wp-admin/includes/plugin.php'; If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes