0
Validation results

TESSERACT

TESSERACT

WordPress 6.7.1 theme
0
  • THEME TYPEWordPress theme 6.7.1
  • FILE NAMEtesseract-free-theme.zip
  • FILE SIZE1231015 bytes
  • MD5e1307567f379f58d22150ad64c359f25
  • SHA128d2f9aa2d232edbb6f301ec1d98aa315f569296
  • LICENSEGNU GPL 2
  • FILES INCLUDEDCSS, PHP, XML, Bitmap images, Adobe Illustrator
  • THEME URIhttp://tesseracttheme.com/
  • VERSION3.8.8
  • AUTHOR URI
  • TAGScustom-background, custom-header, custom-menu, editor-style, one-column, two-columns, featured-images, full-width-template, left-sidebar, threaded-comments, translation-ready, microformats
  • CREATION DATE2019-05-10
  • LAST FILE UPDATE2020-09-12
  • LAST VALIDATION2020-09-12 08:27
This theme seems to be proprietary. Themecheck doesn't distribute commercial themes.
Critical alerts
  1. Customizer : Sanitization of Customizer settings Found a Customizer setting that did not have a sanitization callback function in file blog.php. Every call to the add_setting() method needs to have a sanitization callback function passed.Found a Customizer setting that did not have a sanitization callback function in file header-layout.php. Every call to the add_setting() method needs to have a sanitization callback function passed.Found a Customizer setting that did not have a sanitization callback function in file woocommerce.php. Every call to the add_setting() method needs to have a sanitization callback function passed.Found a Customizer setting that did not have a sanitization callback function in file header-colors.php. Every call to the add_setting() method needs to have a sanitization callback function passed.Found a Customizer setting that did not have a sanitization callback function in file header-logo.php. Every call to the add_setting() method needs to have a sanitization callback function passed.Found a Customizer setting that did not have a sanitization callback function in file mobile-menu.php. Every call to the add_setting() method needs to have a sanitization callback function passed.Found a Customizer setting that did not have a sanitization callback function in file function-menu.php. Every call to the add_setting() method needs to have a sanitization callback function passed.Found a Customizer setting that did not have a sanitization callback function in file functions.php. Every call to the add_setting() method needs to have a sanitization callback function passed.
  2. Title : Title The <title> tags can only contain a call to wp_title(). Use the wp_title filter to modify the output.
  3. Security breaches : Modification of PHP server settings Found ini_set in file functions.php.
    Ligne12: ini_set('display_errors','Off');
    Ligne13: ini_set('error_reporting', E_ALL );
    Ligne18: ini_set('display_errors','On');
    Ligne19: ini_set('error_reporting', E_ALL );
  4. Malware : Operations on file system fopen was found in the file function-im-ex.php
    Ligne97: $handle = fopen($_FILES['import_file']['tmp_name'], 'r');
    Ligne183: $fp = fopen('php://output', 'w');
    fclose was found in the file function-im-ex.php
    Ligne118: fclose($handle);
    file_get_contents was found in the file function-im-ex.php
    Ligne134: $image_data       = file_get_contents($image_url); // Get image data
    file_put_contents was found in the file function-im-ex.php
    Ligne146: file_put_contents( $file, $image_data );
    fopen was found in the file function-im-ex.php
    Ligne97: $handle = fopen($_FILES['import_file']['tmp_name'], 'r');
    Ligne183: $fp = fopen('php://output', 'w');
    file_get_contents was found in the file link-button-module.php
    Ligne24: $parsed_file = @file_get_contents( $icons_file );
    
    Ligne47: $parsed_file = file_get_contents( $icons_file );
    
    file_get_contents was found in the file link-button-module.php
    Ligne24: $parsed_file = @file_get_contents( $icons_file );
    
    Ligne47: $parsed_file = file_get_contents( $icons_file );
    
    fopen was found in the file functions.php
    Ligne1374: $file_handle = fopen($csvFile, 'r');
    Ligne1424: $file_handle = fopen($csvFile, 'r');
    fclose was found in the file functions.php
    Ligne1378: fclose($file_handle);
    Ligne1428: fclose($file_handle);
    fopen was found in the file functions.php
    Ligne1374: $file_handle = fopen($csvFile, 'r');
    Ligne1424: $file_handle = fopen($csvFile, 'r');
    fclose was found in the file functions.php
    Ligne1378: fclose($file_handle);
    Ligne1428: fclose($file_handle);
  5. Admin menu : Themes should use add_theme_page() for adding admin pages. File class-tgm-plugin-activation.php :
    Ligne641: $this->page_hook = call_user_func( 'add_submenu_page', $args['parent_slug'], $args['page_title'], $args['menu_t
    File function-im-ex.php :
    Ligne37: add_menu_page( $page_title, $menu_title, $capability, $menu_slug, $function
    File function-im-ex.php :
    Ligne38: add_submenu_page( 'tesseract_im_ex', 'Import', 'Import', 'manage_options', 
    Ligne39: add_submenu_page( 'tesseract_im_ex', 'Export', 'Export', 'manage_options', 
    File function-im-ex.php :
    Ligne38: add_submenu_page( 'tesseract_im_ex', 'Import', 'Import', 'manage_options', 
    Ligne39: add_submenu_page( 'tesseract_im_ex', 'Export', 'Export', 'manage_options', 
Warning
  1. Text domain : Incorrect use of translation functions.Wrong installation directory for the theme name. The directory name must match the slug of the theme. This theme's correct slug and text-domain is tesseract.
  2. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function __, with the arguments 'Big full width images do not work with “Left and Right” positions. Please use a smaller image thumbnail. Max image size 500x500, for best view.' in file blog.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Products Per Page' in file woocommerce.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are tesseract, textdomain, woocommerce, tgmpa, fl-builder, tesseract-remove-branding, caldera_wdn_text_domain, caldera-wdn-common, tessearact, Tesseract, favorite_color, tes_debug_theme.
  3. Plugin territory : Plugin territory functionalitiesThe theme uses the register_taxonomy() function, which is plugin-territory functionality.
  4. Unwanted files : hidden file(s) or folder(s).ds_store was found.
  5. Hidden admin bar : Hidden admin Bar in CSSThemes should not hide admin bar. Detected in file style.css.
  6. I18N implementation : Proper use of ___all(Possible variable $account_number found in translation function in social-accounts.php. Translation function calls should not contain PHP variables. Possible variable $account_number found in translation function in social-accounts.php. Translation function calls should not contain PHP variables. Possible variable $str_foobtby found in translation function in functions.php. Translation function calls should not contain PHP variables. Possible variable $str_foobtby found in translation function in functions.php. Translation function calls should not contain PHP variables.
  7. CSS files : Presence of .sticky class.sticky css class is needed in theme css.
  8. CSS files : Presence of .bypostauthor class.bypostauthor css class is needed in theme css.
  9. Screenshot : Screenshot fileScreenshot size is 600x450px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file beaver-builder-extensions.php.
    Ligne269: <a href='https://tesseracttheme.com/designer/' target='_blank'><div class='content-b
    Ligne281: <a href='https://tesseracttheme.com/designer/' target='_blank'><div class='content-b
    Ligne293: <a href='https://tesseracttheme.com/designer/' target='_blank'><div class='content-b
    Ligne269: <a href='https://tesseracttheme.com/designer/' target='_blank'><div class='content-b
    Ligne281: <a href='https://tesseracttheme.com/designer/' target='_blank'><div class='content-b
    Ligne293: <a href='https://tesseracttheme.com/designer/' target='_blank'><div class='content-b
    Ligne269: <a href='https://tesseracttheme.com/designer/' target='_blank'><div class='content-b
    Ligne281: <a href='https://tesseracttheme.com/designer/' target='_blank'><div class='content-b
    Ligne293: <a href='https://tesseracttheme.com/designer/' target='_blank'><div class='content-b
    Possible hard-coded links were found in the file function-im-ex.php.
    Ligne359: // 					<p>Built by <a href='http://tesseractplus.com/' target='_blank' title='Tesseract'>, Tesseract.</
    Possible hard-coded links were found in the file customizer-frontend-functions.php.
    Ligne307: $default_html = '<strong>Theme by <a href='http://tesseracttheme.com'>Tesseract</a></strong>
    Ligne313: <a href='http://tesseracttheme.com'>
    Possible hard-coded links were found in the file header-content.php.
    Ligne143: 'description' 		=> '<b><span style='font-color:blue; font-size:15px; font-family:caption;' ><a href='https://tesseracttheme.com/how-to-change-button-colors/' target='_blank'>Cl
    Possible hard-coded links were found in the file footer-content.php.
    Ligne120: $default_html = '<strong>Theme by <a href='http://tesseracttheme.com'>Tesseract</a></strong>
    Ligne126: <a href='http://tesseracttheme.com'>
    Ligne342: 'description' =>  __('<a href='http://tesseracttheme.com/designer/' target='_blank'><img src='https://s3.a
    Ligne367: 'description' =>  __('<a href='http://tesseracttheme.com/designer/' target='_blank'><img src='https://s3.a
    Ligne342: 'description' =>  __('<a href='http://tesseracttheme.com/designer/' target='_blank'><img src='https://s3.a
    Ligne367: 'description' =>  __('<a href='http://tesseracttheme.com/designer/' target='_blank'><img src='https://s3.a
    Ligne342: 'description' =>  __('<a href='http://tesseracttheme.com/designer/' target='_blank'><img src='https://s3.a
    Ligne367: 'description' =>  __('<a href='http://tesseracttheme.com/designer/' target='_blank'><img src='https://s3.a
    Possible hard-coded links were found in the file header-logo.php.
    Ligne14: 'description' 		=> '<b><span style='font-color:blue; font-size:20px; padding-left:32px; font-family:caption;' ><a href='http://logomakr.com' target='_blank'>Create Your Logo</a></span><b><br/>Mak
    Possible hard-coded links were found in the file function-menu.php.
    Ligne388: $default_html = '<strong>Theme by <a href='https://tesseracttheme.com'>Tesseract</a></strong>
    Ligne394: <a href='https://tesseracttheme.com'>
    Ligne1503: $default_html = '<strong>Theme by <a href='https://tesseracttheme.com'>Tesseract</a></strong>
    Ligne1509: <a href='https://tesseracttheme.com'>
    Ligne1693: echo '<div class='error'><p>Looks like you have the OLD <b>Tesseract Remove Branding</b> Plugin. You will need to upgrade to the new Tesseract Remove Branding Plugin' to get the newest features. <a href='https://tesseracttheme.com/unbranding-update/' target='_blank'>Click Here</
    Ligne388: $default_html = '<strong>Theme by <a href='https://tesseracttheme.com'>Tesseract</a></strong>
    Ligne394: <a href='https://tesseracttheme.com'>
    Ligne1503: $default_html = '<strong>Theme by <a href='https://tesseracttheme.com'>Tesseract</a></strong>
    Ligne1509: <a href='https://tesseracttheme.com'>
    Ligne1693: echo '<div class='error'><p>Looks like you have the OLD <b>Tesseract Remove Branding</b> Plugin. You will need to upgrade to the new Tesseract Remove Branding Plugin' to get the newest features. <a href='https://tesseracttheme.com/unbranding-update/' target='_blank'>Click Here</
    Ligne1693: echo '<div class='error'><p>Looks like you have the OLD <b>Tesseract Remove Branding</b> Plugin. You will need to upgrade to the new Tesseract Remove Branding Plugin' to get the newest features. <a href='https://tesseracttheme.com/unbranding-update/' target='_blank'>Click Here</
    Possible hard-coded links were found in the file functions.php.
    Ligne1280: <a href='http://tesseracttheme.com/unbranding-plugin-2-2/' ><img src='https://s3.ama
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  6. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  7. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  8. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  9. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  10. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  11. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  12. Use of includes : Use of include or requireThe theme appears to use include or require : woocommerce-functions.php
    Ligne387: require_once( ABSPATH . 'wp-admin/includes/plugin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : required-plugins.php
    Ligne55: require(dirname(__FILE__).'/../dismissible_notice/src/init.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : load.php
    Ligne27: require 'required-plugins.php';
    Ligne29: require 'import-functions.php';
    Ligne31: require 'utilities.php';
    Ligne35: require 'beaver-builder-extensions/beaver-builder-extensions.php';
    Ligne37: require 'elementor/elementor.php';
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : function-im-ex.php
    Ligne163: require_once(ABSPATH . 'wp-admin/includes/image.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : header.php
    Ligne748: require 'header-builder.php';
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : beaver-builder-modules.php
    Ligne17: 
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : init.php
    Ligne14: require(dirname(__FILE__).'/../dismissible_notice/src/init.php');
    
    Ligne24: require('Caldera_Warnings_Dismissible_Notice.php');
    
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes