0
Validation results

Oshin

Oshin

WordPress 5.9.3 theme
0
  • THEME TYPEWordPress theme 5.9.3
  • FILE NAMEoshin.zip
  • FILE SIZE31486369 bytes
  • MD5e75f45ea87659b113abac1c5bd619043
  • SHA12ec52bd829102928e4c66b47f5519832d17f2e35
  • LICENSEGNU GPL 2
  • FILES INCLUDEDCSS, PHP, XML, Bitmap images, Adobe Illustrator
  • THEME URIhttp://brandexponents.com/oshin/
  • VERSION6.4.1
  • AUTHOR URI
  • TAGStwo-columns, three-columns, left-sidebar, right-sidebar, custom-menu, featured-images, flexible-header, full-width-template, post-formats, sticky-post, theme-options, translation-ready
  • CREATION DATE2020-01-06
  • LAST FILE UPDATE2020-01-06
  • LAST VALIDATION2020-01-06 13:11
  • OTHER VERSIONS

    6.8.9.4 : 15%

    1.4 : 0%

This theme seems to be proprietary. Themecheck doesn't distribute commercial themes.
Critical alerts
  1. Customizer : Sanitization of Customizer settings Found a Customizer setting that did not have a sanitization callback function in file extension_customizer.php. Every call to the add_setting() method needs to have a sanitization callback function passed.
  2. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe class="be-youtube-video gallery" src="https://www.youtube.com/embed/'.$video_id.'?rel=0&wmode=transparent" style="border: none;"> in file common-helpers.php. 211: return '<iframe class='be-youtube-video gallery' src='https://www.youtube.com/embedFound <iframe src='//www.facebook.com/plugins/like.php?href=".urlencode($url)."&amp;send=false&amp;layout=button_count&amp;width=100&amp;show_faces=false&amp;action=like&amp;colorscheme=light&amp;font&amp;height=35&amp;appId=173868296037629' scrolling='no' frameborder='0' style='border:none; overflow:hidden; width:100px; height:20px;' allowTransparency='true'> in file helpers.php. 170: $out = '<iframe src='//www.facebook.com/plugins/like.php?href='.urlencode($url).'&a
  3. Malware : Operations on file system fopen was found in the file class.redux_helpers.php 665: //$fp = fopen( $file, 'r' );fread was found in the file class.redux_helpers.php 668: //$file_data = fread( $fp, 8192 );fclose was found in the file class.redux_helpers.php 671: //fclose( $fp );
  4. Admin menu : Themes should use add_theme_page() for adding admin pages. File be-themes-update-config.php : 300: 'page_parent' => 'themes.php', // For a full list of options, visit: http://codex.wordpress.org/Function_Reference/add_submenu_page#ParametersFile be-themes-options-config.php : 4792: 'page_parent' => 'themes.php', // For a full list of options, visit: http://codex.wordpress.org/Function_Reference/add_submenu_page#ParametersFile BEAdminMenu.php : 32: $page = add_menu_page( $this::$settings['page-title'], $this::$settings['menu-titleFile welcome.php : 201: $page = 'add_management_page';File framework.php : 1361: // wrappers and need to be appened to using add_submenu_page.1412: $this->page = call_user_func( 'add_submenu_page', $page_parent, $page_title, $menu_title, $page_permission1470: call_user_func( 'add_submenu_page', $this->args['page_slug'], $section['title'], $section['tFile framework.php : 1361: // wrappers and need to be appened to using add_submenu_page.1412: $this->page = call_user_func( 'add_submenu_page', $page_parent, $page_title, $menu_title, $page_permission1470: call_user_func( 'add_submenu_page', $this->args['page_slug'], $section['title'], $section['tFile framework.php : 1438: $this->page = call_user_func( 'add_menu_page', $this->args['page_title'], $this->args['menu_title'], $thisFile framework.php : 1361: // wrappers and need to be appened to using add_submenu_page.1412: $this->page = call_user_func( 'add_submenu_page', $page_parent, $page_title, $menu_title, $page_permission1470: call_user_func( 'add_submenu_page', $this->args['page_slug'], $section['title'], $section['t
  5. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was typehub.zip oshine-core.zip oshine-modules.zip meta-box-show-hide.zip tatsu.zip revslider.zip colorhub.zip meta-box-conditional-logic.zip meta-box-tabs.zip masterslider.zip be-portfolio-post.zip.
Warning
  1. core scripts deregistered : Core scripts deregistrationFound wp_deregister_script in be-woo-functions.php. Themes must not deregister core scripts. 35: //wp_deregister_script( 'be-themes-woocommerce-js' );Found wp_deregister_script in enqueue.php. Themes must not deregister core scripts. 215: // wp_deregister_script( 'jquerySelect2' );Found wp_deregister_script in framework.php. Themes must not deregister core scripts. 565: // wp_deregister_script( 'wpb_ace' );
  2. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are rwmb, oshin, tgmpa, be-functions, meta-box, redux-framework, themecheck.
  3. PHP short tags : Presence of PHP short tagsPHP short tags were found in file parsedown.php. "This practice is discouraged because they are only available if enabled with short_open_tag php.ini configuration file directive, or if PHP was configured with the --enable-short-tags option" (php.net), which is not the case on many servers.772: if (preg_match('/^\[(.+?)\]:[ ]*<?(\S+?)>?(?:[ ]+['\'(](.+)['\')])?[ ]*$/', $Line['text'], $matches))
  4. Hidden admin bar : Hidden admin Bar in CSSThemes should not hide admin bar. Detected in file perspective-left-right.min.css.
  5. Screenshot : Screenshot fileBad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. favicon presence : Favicon managementPossible Favicon found in header.php. Favicons are handled by the Site Icon setting in the customizer since version 4.3.
  2. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file extra.php.51: To change PHP directives you need to modify <strong>php.ini</strong> file, more information about this you can <a href='http://goo.gl/I9f74U' target='_blank'>search here</a> or contact your hostiPossible hard-coded links were found in the file core.php.40: $links[] = '<a href='https://metabox.io/docs/'>' . __( 'Documentation', 'meta-box' ) . '</a>';41: $links[] = '<a href='https://metabox.io/plugins/'>' . __( 'Extensions', 'meta-box' ) . '</a>';Possible hard-coded links were found in the file welcome.php.482: <a href='http://docs.reduxframework.com/' class='docs button button-primary'>Docs</a485: <a href='https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=MMFMHW
  3. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  4. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  5. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  6. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  7. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  8. Use of includes : Use of include or requireThe theme appears to use include or require : be-woo-functions.php 234: require_once( get_template_directory() .'/woocommerce/class-wc-widget-cart. If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : be-themes-update-config.php 88: require_once( ABSPATH .'/wp-admin/includes/file.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : widget-functions.php 100: require_once( get_template_directory() .'/functions/widgets/recent_post_wid101: require_once( get_template_directory() .'/functions/widgets/brankic-photost If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : common-helpers.php 400: require_once( get_template_directory().'/functions/twitter/Autolink.php' );437: require_once( get_template_directory().'/functions/twitter/class-wp-twitter604: // require_once( get_template_directory().'/functions/Pintrest/Pinterest.class If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : helpers.php 1014: //include_once( ABSPATH . 'wp-admin/includes/plugin.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : be-themes-options-config.php 88: require_once( ABSPATH .'/wp-admin/includes/file.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : welcome.php 378: require_once 'views/about.php';393: require_once 'views/changelog.php';408: require_once 'views/extensions.php';424: require_once 'views/support.php';439: require_once 'views/credits.php';454: require_once 'views/status_report.php'; If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : extension_customizer.php 753: require_once( $class_file ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : class.redux_api.php 534: include_once( $api_check ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : framework.php 410: // require_once 'core/dashboard.php';414: // require_once 'core/newsflash.php';1719: require_once 'core/enqueue.php';2868: require_once 'core/enqueue.php';2926: require_once 'core/panel.php';3278: require_once 'core/panel.php'; If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes