18
Validation results

intensy

intensy

Joomla template 2.5
18
  • THEME TYPEJoomla template 2.5
  • FILE NAMEintensy_j36.zip
  • FILE SIZE2223823 bytes
  • MD57af83ca175cb051188abd4769b1043b4
  • SHA1b1bb6181dbfb54c199e748cf9bf69bdb89e34d56
  • LICENSEGNU GPL 2
  • FILES INCLUDEDCSS, PHP, HTML, XML, Bitmap images, Adobe Illustrator
  • VERSION1.5.0
  • CREATION DATE2016-08-05
  • LAST FILE UPDATE2017-03-04
  • LAST VALIDATION2017-03-04 23:26
Critical alerts
  1. Security breaches : Use of base64_decode() Found base64_decode in file SystemHelper.php.
    Line 308: if (false === $contents = base64_decode($contents)) {
  2. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe id="cm-theme-preview" src="<?php echo $this['system']-> in file customizer.php.
    Line 44: <iframe id='cm-theme-preview' src='<?php echo $this['system']->url ?>'></if
  3. Malware : Operations on file system file_get_contents was found in the file OptionHelper.php
    Line 40: $this->data = (file_exists($this->file) and $data = json_decode(file_get_contents($this->file), true) and is_array($data)) ? $data : array(
    file_get_contents was found in the file SystemHelper.php
    Line 303: if (false === $contents = file_get_contents($upload['tmp_name'])) {
    file_get_contents was found in the file styles.php
    Line 17: $data['styles']['default'] = file_get_contents($default);
    Line 41: $data['styles'][basename(preg_replace('#/style\.less$#', '', $file))] = file_get_contents($file);
    file_get_contents was found in the file styles.php
    Line 17: $data['styles']['default'] = file_get_contents($default);
    Line 41: $data['styles'][basename(preg_replace('#/style\.less$#', '', $file))] = file_get_contents($file);
    file_put_contents was found in the file CurlTransport.php
    Line 58: if ($res && $request['file'] && file_put_contents($request['file'], $res['body']) === false) {
    fwrite was found in the file SocketTransport.php
    Line 35: @fwrite($fp, $request['raw']);
    fclose was found in the file SocketTransport.php
    Line 39: @fclose($fp);
    file_put_contents was found in the file SocketTransport.php
    Line 46: if ($res && $request['file'] && file_put_contents($request['file'], $res['body']) === false) {
    fopen was found in the file StreamTransport.php
    Line 12: * HTTP transport class using fopen and streams.
    Line 46: // connect with fopen and streams
    Line 48: $fp   = @fopen($url, 'r', false, stream_context_create($options));
    Line 71: return function_exists('fopen') && function_exists('ini_get') && ini_get('allow_url_fopen') && !ver
    fclose was found in the file StreamTransport.php
    Line 51: fclose($fp);
    file_put_contents was found in the file StreamTransport.php
    Line 57: if ($res && $request['file'] && file_put_contents($request['file'], $res['body']) === false) {
    file_get_contents was found in the file CssImageBase64Filter.php
    Line 45: $content = str_replace($url, sprintf('url(data:image/%s;base64,%s)', str_replace(array('jpg','svg'), array('jpeg','svg+xml'), strtolower($extension[1])), base64_encode(file_get_contents($path))), $content);
    file_get_contents was found in the file CssImportResolverFilter.php
    Line 80: $content = @file_get_contents($file);
    file_get_contents was found in the file FileAsset.php
    Line 55: $this->doLoad(preg_replace('{^\xEF\xBB\xBF|\x1A}', '', file_get_contents($this->path)), $filter); // load with UTF-8 BOM removal
    file_put_contents was found in the file ChecksumHelper.php
    Line 42: return file_put_contents($path.$filename, $checksums);
    file_get_contents was found in the file DomHelper.php
    Line 31: $input = file_get_contents($input);
    file_put_contents was found in the file AssetHelper.php
    Line 180: @file_put_contents($this['path']->path('cache:').'/'.ltrim($file, '/'), $con
    file_get_contents was found in the file JsonLoader.php
    Line 34: return json_decode(file_get_contents($filename), true);
  4. Malware : Network operations curl_init was found in the file CurlTransport.php
    Line 29: $curl = curl_init();
    Line 72: return function_exists('curl_init');
    curl_exec was found in the file CurlTransport.php
    Line 51: $res = curl_exec($curl);
    fsockopen was found in the file SocketTransport.php
    Line 12: * HTTP transport class using fsockopen.
    Line 31: // connect with fsockopen
    Line 33: $fp  = @fsockopen($host, $request['url']['port'], $errno, $errstr, $request['url'][
    Line 60: return function_exists('fsockopen');
Warning
  1. Security breaches : Use of base64_encode()Found base64_encode in file offline.php.
     <input type='hidden' name='return' value='<?php echo base64_encode(JURI::base()) ?>'>
    Found base64_encode in file default_result.php.
     $route = $this->result->route . '&highlight=' . base64_encode(json_encode($this->query->highlight));
    Found base64_encode in file AbstractTransport.php.
     $request['header']['Authorization'] = $request['auth']['method'].' '.base64_encode($request['auth']['user'].':'.$request['auth']['pass']);
     $request['header']['Authorization'] = $request['auth']['method'].' '.base64_encode($request['url']['user'].':'.$request['url']['pass']);
    Found base64_encode in file CssImageBase64Filter.php.
     $content = str_replace($url, sprintf('url(data:image/%s;base64,%s)', str_replace(array('jpg','svg'), array('jpeg','svg+xml'), strtolower($extension[1])), base64_encode(file_get_contents($path))), $content);
    Found base64_encode in file listing_div.php.
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url)));?>'/>
    Found base64_encode in file cart.php.
     <a href='<?php echo hikashop_completeLink('product&task=updatecart&product_id='.$row->product_id.$this->url_itemid.'&quantity=0&return_url='.urlencode(base64_encode(hikashop_currentURL('return_url')))); ?>' onclick='var qty_fi
     <a href='<?php echo hikashop_completeLink('product&task=updatecart&cart_type='.$this->cart_type.'&cart_product_id='.$row->cart_product_id.'&quantity=0&return_url='.urlencode(base64_encode(urldecode($this->params->get('url'))))); ?>' onclick='var qty
    Found base64_encode in file compare.php.
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url)));?>'/>
    Found base64_encode in file show_block_characteristic.php.
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url))); ?>'/>
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url)));?>'/>
    Found base64_encode in file listing_table.php.
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url)));?>'/>
    Found base64_encode in file listing_list.php.
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url)));?>'/>
    Found base64_encode in file show_tabular.php.
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url)));?>'/>
    Found base64_encode in file show.php.
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url)));?>'/>
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url)));?>'/>
    Found base64_encode in file listing_img.php.
     <input type='hidden' name='return_url' value='<?php echo urlencode(base64_encode(urldecode($this->redirect_url)));?>'/>
    Found base64_encode in file default_login.php.
     <input type='hidden' name='return' value='<?php echo base64_encode($this->params->get('login_redirect_url', $this->form->getValu
    Found base64_encode in file default_logout.php.
     <input type='hidden' name='return' value='<?php echo base64_encode($this->params->get('logout_redirect_url', $this->form->getVal
  2. Line endings consistency : Both DOS and UNIX style line endingsFound a mix of \r\n and \n line endings in file latest.php.Found a mix of \r\n and \n line endings in file latest.php.
Tip-off
  1. favicon presence : Favicon managementPossible Favicon found in head.php. Favicons are handled by the Site Icon setting in the customizer since version 4.3.
Other checked themes