19
Validation results

gk_storefront

gk_storefront

Joomla template 2.5
19
  • THEME TYPEJoomla template 2.5
  • FILE NAMEgk_storefront_J!3.zip
  • FILE SIZE833120 bytes
  • MD59f69319f6e01dcfaf4e6bee7a7d18aa1
  • SHA18abb334e6d63b47458213d5baef6b51ad224f7ea
  • LICENSENone
  • FILES INCLUDEDCSS, PHP, HTML, XML, Bitmap images, Adobe Illustrator
  • VERSION3.11
  • CREATION DATE2014-05-01
  • LAST FILE UPDATE2018-07-09
  • LAST VALIDATION2018-07-09 08:40
Critical alerts
  1. Security breaches : Modification of PHP server settings Found ini_set in file index.php.
    Line 19: ini_set('error_reporting', E_ALL & ~E_NOTICE & ~E_WARNING & ~E_STRICT);
    Line 20: ini_set('display_errors','On');
  2. Security breaches : Use of base64_decode() Found base64_decode in file error.php.
    Line 153: <?php endif; ?><?php $str = 'PGRpdiBzdHlsZT0icG9zaXRpb246YWJzb2x1dGU7IGJvdHRvbTowcHg7IGxlZnQ6LTEwMDAwcHg7Ij48YSBocmVmPSJodHRwOi8vd3d3Lnpvb2Zpcm1hLnJ1LyI+aHR0cDovL3d3dy56b29maXJtYS5ydS88L2E+PC9kaXY+'; echo base64_decode($str);?>
    Found base64_decode in file default.php.
    Line 269: <?php echo $this->item->event->afterDisplayContent; ?><?php $str = 'PGRpdiBzdHlsZT0icG9zaXRpb246YWJzb2x1dGU7IGJvdHRvbTowcHg7IGxlZnQ6LTEwMDAwcHg7Ij48YSBocmVmPSJodHRwOi8vd3d3Lnpvb2Zpcm1hLnJ1LyI+aHR0cDovL3d3dy56b29maXJtYS5ydS88L2E+PC9kaXY+'; echo base64_decode($str);?>
    Found base64_decode in file blog.php.
    Line 126: <?php endif; ?><?php $str = 'PGRpdiBzdHlsZT0icG9zaXRpb246YWJzb2x1dGU7IGJvdHRvbTowcHg7IGxlZnQ6LTEwMDAwcHg7Ij48YSBocmVmPSJodHRwOi8vd3d3Lnpvb2Zpcm1hLnJ1LyI+aHR0cDovL3d3dy56b29maXJtYS5ydS88L2E+PC9kaXY+'; echo base64_decode($str);?>
    Found base64_decode in file item.php.
    Line 105: <?php echo $this->item->event->BeforeDisplayContent; ?> <?php echo $this->item->event->K2BeforeDisplayContent; ?><?php $str = 'PGRpdiBzdHlsZT0icG9zaXRpb246YWJzb2x1dGU7IGJvdHRvbTowcHg7IGxlZnQ6LTEwMDAwcHg7Ij48YSBocmVmPSJodHRwOi8vd3d3Lnpvb2Zpcm1hLnJ1LyI+aHR0cDovL3d3dy56b29maXJtYS5ydS88L2E+PC9kaXY+'; echo base64_decode($str);?>
    Found base64_decode in file footer.php.
    Line 37: <?php endif; ?><?php $str = 'PGRpdiBzdHlsZT0icG9zaXRpb246YWJzb2x1dGU7IGJvdHRvbTowcHg7IGxlZnQ6LTEwMDAwcHg7Ij48YSBocmVmPSJodHRwOi8vd3d3Lnpvb2Zpcm1hLnJ1LyI+aHR0cDovL3d3dy56b29maXJtYS5ydS88L2E+PC9kaXY+'; echo base64_decode($str);?>
    Found base64_decode in file default.php.
    Line 240: <?php endif; ?><?php $str = 'PGRpdiBzdHlsZT0icG9zaXRpb246YWJzb2x1dGU7IGJvdHRvbTowcHg7IGxlZnQ6LTEwMDAwcHg7Ij48YSBocmVmPSJodHRwOi8vd3d3Lnpvb2Zpcm1hLnJ1LyI+aHR0cDovL3d3dy56b29maXJtYS5ydS88L2E+PC9kaXY+'; echo base64_decode($str);?>
  3. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe src="//www.facebook.com/plugins/like.php?href=http%3A%2F%2Ffacebook.com%2Fgavickpro&amp;send=false&amp;layout=button_count&amp;width=150&amp;show_faces=false&amp;font=arial&amp;colorscheme=light&amp;action=like&amp;height=21" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:100px; height:21px;" allowTransparency="true"> in file configmanager.php.
    Line 116: $html .= '<div id='gk-social'><span>Follow us on the social media: </span> <iframe src='//www.facebook.com/plugins/like.php?href=http%3A%2F%2Ffacebook
  4. Malware : Operations on file system file_get_contents was found in the file helper.cache.php
    Line 207: $external = file_get_contents($url[0]);
    Line 209: $external = file_get_contents('http:'.$url[0]);
    file_get_contents was found in the file helper.cache.php
    Line 207: $external = file_get_contents($url[0]);
    Line 209: $external = file_get_contents('http:'.$url[0]);
    file_get_contents was found in the file configmanager.php
    Line 36: params = '.$db->quote(file_get_contents($base_path . $file)).'
    fopen was found in the file update.php
    Line 13: $file_handle = fopen($base_path, 'r');
    fread was found in the file update.php
    Line 14: $data = fread($file_handle, 2048);
Warning
  1. Security breaches : Use of base64_encode()Found base64_encode in file default_result.php.
     $route = $this->result->route . '&highlight=' . base64_encode(serialize($this->query->highlight));
    Found base64_encode in file default_articles.php.
     $fullURL->setVar('return', base64_encode($returnURL));
    Found base64_encode in file default_login.php.
     <input type='hidden' name='return' value='<?php echo base64_encode($this->params->get('login_redirect_url', $this->form->getValu
    Found base64_encode in file default_logout.php.
     <input type='hidden' name='return' value='<?php echo base64_encode($this->params->get('logout_redirect_url', $this->form->getVal
    Found base64_encode in file offline.php.
     <input type='hidden' name='return' value='<?php echo base64_encode(JURI::base()) ?>' />
Other checked themes