12
Validation results

XStore

XStore

WordPress 6.5.2 theme
12
This theme seems to be proprietary. Themecheck doesn't distribute commercial themes.
Critical alerts
  1. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe width="100%" height="560" src="' . $embed . '" frameborder="0" allowfullscreen> in file template-elements.php. 1484: <iframe width='100%' height='560' src='' . $embed . '' frameborder='0' allo
  2. Malware : Operations on file system file_get_contents was found in the file system-requirements.php 75: 'f_get_contents' => function_exists( 'file_get_contents' ),238: <td>file_get_contents( ):</td>file_put_contents was found in the file envato-setup-export.php 200: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten201: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten202: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten203: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten204: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/contenfile_put_contents was found in the file envato-setup-export.php 200: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten201: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten202: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten203: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten204: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/contenfile_put_contents was found in the file envato-setup-export.php 200: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten201: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten202: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten203: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten204: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/contenfile_put_contents was found in the file envato-setup-export.php 200: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten201: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten202: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten203: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten204: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/contenfile_put_contents was found in the file envato-setup-export.php 200: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten201: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten202: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten203: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/conten204: //file_put_contents( get_home_path() . '/../theme/plugins/envato_setup/contenfile_put_contents was found in the file envato_setup.php 1432: //file_put_contents( $new_theme_path.'/style.css', $css );
  3. Admin menu : Themes should use add_theme_page() for adding admin pages. File admin.php : 301: add_action( 'admin_menu', array( $this, 'et_add_menu_page' ) );304: public function et_add_menu_page(){305: add_menu_page( File admin.php : 314: add_submenu_page(324: add_submenu_page(335: add_submenu_page(344: add_submenu_page(352: add_submenu_page(362: add_submenu_page(371: add_submenu_page(380: add_submenu_page(File admin.php : 314: add_submenu_page(324: add_submenu_page(335: add_submenu_page(344: add_submenu_page(352: add_submenu_page(362: add_submenu_page(371: add_submenu_page(380: add_submenu_page(File admin.php : 314: add_submenu_page(324: add_submenu_page(335: add_submenu_page(344: add_submenu_page(352: add_submenu_page(362: add_submenu_page(371: add_submenu_page(380: add_submenu_page(File admin.php : 314: add_submenu_page(324: add_submenu_page(335: add_submenu_page(344: add_submenu_page(352: add_submenu_page(362: add_submenu_page(371: add_submenu_page(380: add_submenu_page(File admin.php : 314: add_submenu_page(324: add_submenu_page(335: add_submenu_page(344: add_submenu_page(352: add_submenu_page(362: add_submenu_page(371: add_submenu_page(380: add_submenu_page(File admin.php : 314: add_submenu_page(324: add_submenu_page(335: add_submenu_page(344: add_submenu_page(352: add_submenu_page(362: add_submenu_page(371: add_submenu_page(380: add_submenu_page(File admin.php : 314: add_submenu_page(324: add_submenu_page(335: add_submenu_page(344: add_submenu_page(352: add_submenu_page(362: add_submenu_page(371: add_submenu_page(380: add_submenu_page(File admin.php : 314: add_submenu_page(324: add_submenu_page(335: add_submenu_page(344: add_submenu_page(352: add_submenu_page(362: add_submenu_page(371: add_submenu_page(380: add_submenu_page(File theme-options.php : 201: // For a full list of options, visit: http://codex.wordpress.org/Function_Reference/add_submenu_page#Parameters
  4. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was et-core-plugin.zip.
Warning
  1. theme tags : Presence of bad theme tagsFound wrong tag in style.css header.
  2. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are xstore, envato-market.
  3. Hidden admin bar : Hidden admin Bar in CSSThemes should not hide admin bar. Detected in file style.css.
  4. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  5. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  6. Editor style : Presence of editor styleNo reference to add_editor_style() was found in the theme. It is recommended that the theme implements editor styling, so as to make the editor content match the resulting post output in the theme, for a better user experience.
  7. Date and time implementation : Use of the_time()At least one hard coded date was found in the file content-grid-2.php. Function get_option( 'date_format' ) should be used instead.At least one hard coded date was found in the file content-grid.php. Function get_option( 'date_format' ) should be used instead.At least one hard coded date was found in the file content.php. Function get_option( 'date_format' ) should be used instead.
  8. Screenshot : Screenshot fileScreenshot size is 880x660px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file admin.php.567: <li>1. <?php esc_html_e('Please enter your Envato account and find ', 'xstore'); ?> <a href='https://themeforest.net/downloads'><?php esc_html_e('Downloads tab', 'xstor578: <a href='https://themeforest.net/item/xstore-responsive-woocommerce-theme/15780546?u768: <div class='text-center'><a href='https://www.youtube.com/channel/UCiZY0AJRFoKhLrkCXomrfmA' class='et-button 817: <li><a href='https://xstore.helpscoutdocs.com/article/4-theme-package' target='_blank'>'818: <li><a href='https://xstore.helpscoutdocs.com/article/12-theme-installation' target='_bl819: <li><a href='https://xstore.helpscoutdocs.com/article/32-child-theme' target='_blank'>' 820: <li><a href='https://xstore.helpscoutdocs.com/article/34-demo-content' target='_blank'>'821: <li><a href='https://xstore.helpscoutdocs.com/article/45-8theme-page-post-layout-setting822: <li><a href='https://xstore.helpscoutdocs.com/article/42-portfolio-page' target='_blank'823: <li><a href='https://xstore.helpscoutdocs.com/article/43-blank-page' target='_blank'>' .827: <li><a href='https://xstore.helpscoutdocs.com/article/63-theme-update' target='_blank'>'831: <li><a href='https://xstore.helpscoutdocs.com/article/86-general-information' target='_b832: <li><a href='https://xstore.helpscoutdocs.com/article/27-mega-menu' target='_blank'>' . 833: <li><a href='https://xstore.helpscoutdocs.com/article/88-one-page-menu' target='_blank'>837: <li><a href='https://xstore.helpscoutdocs.com/article/30-base-theme-translation' target=838: <li><a href='https://xstore.helpscoutdocs.com/article/31-translation-with-wpml' target='842: <li><a href='https://xstore.helpscoutdocs.com/article/48-widgets-custom-widget-areas' ta843: <li><a href='https://xstore.helpscoutdocs.com/article/47-static-blocks' target='_blank'>844: <li><a href='https://xstore.helpscoutdocs.com/article/46-xstore-shortcodes' target='_bla848: <li><a href='https://xstore.helpscoutdocs.com/article/29-general-information' target='_b849: <li><a href='https://xstore.helpscoutdocs.com/article/67-shop-page' target='_blank'>' . 850: <li><a href='https://xstore.helpscoutdocs.com/article/68-single-product-page' target='_b851: <li><a href='https://xstore.helpscoutdocs.com/article/89-product-images' target='_blank'855: <li><a href='https://xstore.helpscoutdocs.com/article/35-general-info' target='_blank'>'856: <li><a href='https://xstore.helpscoutdocs.com/article/36-included-plugins' target='_blan857: <li><a href='https://xstore.helpscoutdocs.com/article/37-plugins-update' target='_blank'858: <li><a href='https://xstore.helpscoutdocs.com/article/38-activation-and-purchase-codes' 859: <li><a href='https://xstore.helpscoutdocs.com/article/65-woocommerce-infinite-scroll-and860: <li><a href='https://xstore.helpscoutdocs.com/article/91-mail-chimp-form-custom-styles' 864: <li><a href='https://xstore.helpscoutdocs.com/article/64-how-to-add-custom-favicon' targ865: <li><a href='https://xstore.helpscoutdocs.com/article/69-how-to-add-slider-banner-in-pro866: <li><a href='https://xstore.helpscoutdocs.com/article/87-facebook-login' target='_blank'867: <li><a href='https://xstore.helpscoutdocs.com/article/41-contact-page' target='_blank'>'868: <li><a href='https://xstore.helpscoutdocs.com/article/44-blog-page' target='_blank'>' . 869: <li><a href='https://xstore.helpscoutdocs.com/article/90-how-to-find-your-themeforest-it873: <li><a href='https://xstore.helpscoutdocs.com/article/25-support' target='_blank'>' . esPossible hard-coded links were found in the file theme-options.php.3478: 'subtitle' => esc_html__('Choose the design type for the products on the shop page. Custom type allows you to choose the design created using', 'xstore' ) . ' <a href='https://kb.wpbakery.com/docs/learning-more/grid-builder/' target='blank'>' 3497: Choose the design created using %1s. Find the Video tutorials for builder usage %2s', 'xstore' ), '<a href='https://wpbakery.com/video-academy/category/grid/' target='_blank'>' . esc_5469: 'desc' => sprintf (esc_html__( 'To create FaceBook APP ID follow the instructions %1s Check theme documentation if it does not work for you %2s', 'xstore' ), '<a href='https://developers.facebook.com/docs/apps/register' target='blank'>https://Possible hard-coded links were found in the file envato_setup.php.520: <!-- <p class='copyrights'>© Created by <a href='https://www.8theme.com/' target='_blank'>8theme</a> - Power Elite ThemeFore1478: <a href='https://www.8theme.com/forums/' target='_blank'>1275: <p class='purchase-code-bg'><a href='https://themeforest.net/downloads' target='blank'><?php esc_html_e('ThemeFo1276: <p><a href='https://themeforest.net/downloads' target='blank'><img src='<?php echo ETHE1275: <p class='purchase-code-bg'><a href='https://themeforest.net/downloads' target='blank'><?php esc_html_e('ThemeFo1276: <p><a href='https://themeforest.net/downloads' target='blank'><img src='<?php echo ETHE1277: <p class='et-message et-info last-item'><?php esc_html_e('A purchase code (license) is only valid for One Project. Do you want to use this theme for a one more project? Purchase a new license ', 'xstore'); ?> <a href='https://themeforest.net/item/xstore-responsive-woocommerce-theme/15780546?l
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  6. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  7. Use of includes : Use of include or requireThe theme appears to use include or require : init.php 3: require_once( apply_filters('etheme_file_url', ETHEME_THEME . 'functions.ph4: require_once( apply_filters('etheme_file_url', ETHEME_THEME . 'custom-style If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : theme-init.php 136: require_once( $locale_file ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : init.php 33: require_once( ETHEME_BASE . ETHEME_CODE . 'helpers.php' );38: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'theme-functio43: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'template-elem48: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'walkers.php')53: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'theme-init.ph58: require_once( apply_filters('etheme_file_url', ETHEME_CODE_3D . 'envato_set63: require_once( apply_filters('etheme_file_url', ETHEME_CODE_POST_TYPES . 'st64: require_once( apply_filters('etheme_file_url', ETHEME_CODE_POST_TYPES . 'po69: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'vc.php') );74: require_once( apply_filters('etheme_file_url', ETHEME_CODE_3D . 'tgm-plugin80: require_once( apply_filters('etheme_file_url', ETHEME_CODE_3D . 'parse-vide97: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'woo.php') );98: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'woo/video.php106: require_once( apply_filters('etheme_file_url', ETHEME_CODE_3D . 'options-fr111: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'theme-options119: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'sidebars.php'126: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'custom-metabo134: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'system-requir136: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'admin.php') )138: require_once( apply_filters('etheme_file_url', ETHEME_CODE_3D . 'menu-image143: require_once( apply_filters('etheme_file_url', ETHEME_CODE . 'version-check If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : theme-options.php 5641: require_once ( ABSPATH . '/wp-admin/includes/file.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : envato_setup.php 599: //@include('envato-setup-export.php');666: require_once( ABSPATH . 'wp-admin/includes/file.php' );1426: require_once ( ABSPATH . '/wp-admin/includes/file.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : loader.php 22: require_once( $class_file ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : field_fonts_uploader.php 231: if ( ! function_exists( 'wp_handle_upload' ) ) require_once( ABSPATH . 'wp-admin/includes/file.php' ); If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.The theme appears to use include or require : helpers.php 38: require_once($path) ;42: require_once($path) ; If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes
78

WordPress 6.5.2 theme

0

WordPress 6.5.2 theme

WordPress 6.5.2 theme