0
Validation results

Jarvis 3.9.1

Jarvis 3.9.1

WordPress 6.7 theme
0
  • THEME TYPEWordPress theme 6.7
  • FILE NAMEthemeforest-5370691-jarvis-onepage-parallax-wordpress-theme-wordpress-theme.zip
  • FILE SIZE8857169 bytes
  • MD54aa91e496b7ec478b8333c6e846d405d
  • SHA18bf2b6781666c89402c293470b6cbc651445bdbf
  • LICENSEGNU GPL 3
  • FILES INCLUDEDCSS, PHP, XML, Bitmap images, Adobe Illustrator
  • VERSION3.9.1
  • TAGStwo-columns, right-sidebar, custom-background, editor-style, featured-images, full-width-template, post-formats, sticky-post, theme-options, translation-ready
  • CREATION DATE2020-09-05
  • LAST FILE UPDATE2020-09-05
  • LAST VALIDATION2020-09-05 18:34
This theme seems to be proprietary. Themecheck doesn't distribute commercial themes.
Critical alerts
  1. Security breaches : Use of base64_decode() Found base64_decode in file functions.interface.php. 228: $smof_data = unserialize(base64_decode($smof_data)); //100% safe - ignore theme check nagFound base64_decode in file OAuth.php. 213: $decoded_sig = base64_decode($signature);
  2. Security breaches : Use of base64_encode() Found base64_encode in file class.options_machine.php. 
     $output .= '<textarea id='export_data' rows='8'>'.base64_encode(serialize($smof_data)) /* 100% safe - ignore theme check nag
    Found base64_encode in file OAuth.php. 
     return base64_encode(hash_hmac('sha1', $base_string, $key, true));
     return base64_encode($signature);
  3. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe src="http://player.vimeo.com/video/'.get_post_meta( get_the_ID(), 'rnr_blog_video_embed', true ).'?title=0&amp;byline=0&amp;portrait=0&amp;color=ffffff" width="960" height="540" frameborder="0" webkitAllowFullScreen mozallowfullscreen allowFullScreen> in file single-video.php. 6: echo '<iframe src='http://player.vimeo.com/video/'.get_post_meta( get_the_ID(), 'Found <iframe src="http://player.vimeo.com/video/'.get_post_meta( get_the_ID(), 'rnr_blog_video_embed', true ).'?title=0&amp;byline=0&amp;portrait=0&amp;color=ffffff" width="960" height="540" frameborder="0" webkitAllowFullScreen mozallowfullscreen allowFullScreen> in file content-video.php. 9: echo '<iframe src='http://player.vimeo.com/video/'.get_post_meta( get_the_ID(), 'Found <iframe src='http://player.vimeo.com/video/$id?autoplay=$autoplay&amp;title=0&amp;byline=0&amp;portrait=0' width='$width' height='$height' class='iframe'> in file shortcodes.php. 439: if($type == 'vimeo') $rnr_video = '<div data-effect=''.$animation.'' class='video-embed'><iframe src='http://player.vimeo.com/video/$id?autoplay=$autoplay&amp;titleFound <iframe src="http://player.vimeo.com/video/'.get_post_meta( get_the_ID(), 'rnr_project_video_embed', true ).'?title=0&amp;byline=0&amp;portrait=0&amp;color=ffffff" width="960" height="540" frameborder="0" webkitAllowFullScreen mozallowfullscreen allowFullScreen> in file single-portfolio.php. 69: echo '<div id='portfolio-video'><iframe src='http://player.vimeo.com/video/'.get_post_meta( get_the_ID(), '
  4. Malware : Operations on file system file_get_contents was found in the file OAuth.php 285: file_get_contents(self::$POST_INPUT)file_get_contents was found in the file placeholder.class.php 235: print file_get_contents($cachePath);
  5. Malware : Network operations curl_init was found in the file twitteroauth.php 196: $ci = curl_init();curl_exec was found in the file twitteroauth.php 228: $response = curl_exec($ci);
  6. Admin menu : Themes should use add_theme_page() for adding admin pages. File class-tgm-plugin-activation.php : 737: $this->page_hook = call_user_func( 'add_submenu_page', $args['parent_slug'], $args['page_title'], $args['menu_t
  7. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was revslider.zip.
Warning
  1. Text domain : Incorrect use of translation functions.Wrong installation directory for the theme name. The directory name must match the slug of the theme. This theme's correct slug and text-domain is jarvis-3-9-1.
  2. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function __, with the arguments 'Last Backup : ' in file class.options_machine.php.Found a translation function that has an incorrect number of arguments. Function _n, with the arguments '%s download remaining', '%s downloads remaining', downloads_remaining, 'woocommerce' in file my-downloads.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'rocknrolla' in file cart-totals.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'rocknrolla' in file shipping-calculator.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Theme Options' in file functions.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Theme Options' in file functions.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are rocknrolla, yith-woocommerce-wishlist, woocommerce-subscriptions, downloads_remaining, tgmpa.
  3. Plugin territory : Plugin territory functionalitiesThe theme uses the register_post_type() function, which is plugin-territory functionality.The theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  4. Unwanted files : hidden file(s) or folder(s).ds_store was found.
  5. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  6. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  7. I18N implementation : Proper use of _e(Possible variable $smof_data found in translation function in single-portfolio.php. Translation function calls should not contain PHP variables. Possible variable $smof_data found in translation function in single-portfolio.php. Translation function calls should not contain PHP variables. Possible variable $smof_data found in translation function in footer.php. Translation function calls should not contain PHP variables.
  8. I18N implementation : Proper use of ___all(Possible variable $cvalue found in translation function in shipping-calculator.php. Translation function calls should not contain PHP variables.
  9. Date and time implementation : Use of the_time()At least one hard coded date was found in the file content-video.php. Function get_option( 'date_format' ) should be used instead.At least one hard coded date was found in the file content-quote.php. Function get_option( 'date_format' ) should be used instead.At least one hard coded date was found in the file content.php. Function get_option( 'date_format' ) should be used instead.At least one hard coded date was found in the file content-link.php. Function get_option( 'date_format' ) should be used instead.At least one hard coded date was found in the file content-gallery.php. Function get_option( 'date_format' ) should be used instead.At least one hard coded date was found in the file content-audio.php. Function get_option( 'date_format' ) should be used instead.At least one hard coded date was found in the file archive.php. Function get_option( 'date_format' ) should be used instead.
  10. Screenshot : Screenshot fileScreenshot size is 600x450px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  2. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  3. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  4. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  5. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  6. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  7. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  8. Use of includes : Use of include or requireThe theme appears to use include or require : index.php 86: require_once ( ADMIN_PATH . 'functions/functions.load.php' );87: require_once ( ADMIN_PATH . 'classes/class.options_machine.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : functions.load.php 10: require_once( ADMIN_PATH . 'functions/functions.php' );11: require_once( ADMIN_PATH . 'functions/functions.filters.php' );12: require_once( ADMIN_PATH . 'functions/functions.interface.php' );13: require_once( ADMIN_PATH . 'functions/functions.options.php' );14: require_once( ADMIN_PATH . 'functions/functions.admin.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : functions.interface.php 83: include_once( ADMIN_PATH . 'front-end/options.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : twitter.php 43: @require_once 'twitteroauth/twitteroauth.php'; If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : twitteroauth.php 10: require_once('OAuth.php'); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : shortcodes.php 327: @require_once 'widgets/twitteroauth/twitteroauth.php';360: If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : index.php 3: require('placeholder.class.php'); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes
72

WordPress 6.7 theme

0

WordPress 6.7 theme

54

WordPress 6.7 theme