0
Validation results

Adventure Tours

Adventure Tours

WordPress 4.8.2 theme
0
Critical alerts
  1. Security breaches : Use of base64_encode() Found base64_encode in file tmhOAuth.php.
     base64_encode(
    Found base64_encode in file lessc.inc.php.
     $url = sprintf('data:%s;base64,%s', $mime, base64_encode(file_get_contents($fullpath)));
  2. Unwanted files : hidden file(s) or folder(s) .travis.yml .jshintrc .jscsrc .editorconfig .csscomb.json .csslintrc .hound.yml was found.
  3. Malware : Operations on file system file_get_contents was found in the file TdFontIconsManager.php
    Line 114: $content = $font_file ? file_get_contents( $file_path ? $file_path : $font_file ) : null;
    file_put_contents was found in the file TdLessProcessor.php
    Line 73: if ( $newCssFileInfo && file_put_contents( $newCssFileInfo['path'], $cssText ) ) {
    Line 171: file_put_contents( $tmpFile, join( '\n',$newValuesText ) );
    file_get_contents was found in the file TdLessProcessor.php
    Line 165: $lessContent = file_get_contents( $fullLessFilePath );
    Line 262: $content = file_get_contents( $variablesFile );
    Line 296: if ( preg_match( '`@import\s*(.*);\s*\/\*\s*'.$metaComment.'\s*\*\/`', file_get_contents( $lessFilePath ), $parseRes ) ) {
    file_put_contents was found in the file TdLessProcessor.php
    Line 73: if ( $newCssFileInfo && file_put_contents( $newCssFileInfo['path'], $cssText ) ) {
    Line 171: file_put_contents( $tmpFile, join( '\n',$newValuesText ) );
    file_get_contents was found in the file TdLessProcessor.php
    Line 165: $lessContent = file_get_contents( $fullLessFilePath );
    Line 262: $content = file_get_contents( $variablesFile );
    Line 296: if ( preg_match( '`@import\s*(.*);\s*\/\*\s*'.$metaComment.'\s*\*\/`', file_get_contents( $lessFilePath ), $parseRes ) ) {
    file_get_contents was found in the file TdLessProcessor.php
    Line 165: $lessContent = file_get_contents( $fullLessFilePath );
    Line 262: $content = file_get_contents( $variablesFile );
    Line 296: if ( preg_match( '`@import\s*(.*);\s*\/\*\s*'.$metaComment.'\s*\*\/`', file_get_contents( $lessFilePath ), $parseRes ) ) {
    file_get_contents was found in the file sources.php
    Line 84: $fonts = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 104: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 125: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 146: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 200: $subject = file_get_contents(VP_DIR . '/public/css/vendor/font-awesome.min.css');
    file_get_contents was found in the file sources.php
    Line 84: $fonts = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 104: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 125: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 146: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 200: $subject = file_get_contents(VP_DIR . '/public/css/vendor/font-awesome.min.css');
    file_get_contents was found in the file sources.php
    Line 84: $fonts = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 104: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 125: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 146: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 200: $subject = file_get_contents(VP_DIR . '/public/css/vendor/font-awesome.min.css');
    file_get_contents was found in the file sources.php
    Line 84: $fonts = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 104: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 125: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 146: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 200: $subject = file_get_contents(VP_DIR . '/public/css/vendor/font-awesome.min.css');
    file_get_contents was found in the file sources.php
    Line 84: $fonts = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 104: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 125: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 146: $fonts   = file_get_contents(dirname(__FILE__) . '/gwf.json');
    Line 200: $subject = file_get_contents(VP_DIR . '/public/css/vendor/font-awesome.min.css');
    file_get_contents was found in the file lessc.inc.php
    Line 120: $root = $parser->parse(file_get_contents($realPath));
    Line 1012: $url = sprintf('data:%s;base64,%s', $mime, base64_encode(file_get_contents($fullpath)));
    Line 1922: $out = $this->compile(file_get_contents($fname), $fname);
    file_get_contents was found in the file lessc.inc.php
    Line 120: $root = $parser->parse(file_get_contents($realPath));
    Line 1012: $url = sprintf('data:%s;base64,%s', $mime, base64_encode(file_get_contents($fullpath)));
    Line 1922: $out = $this->compile(file_get_contents($fname), $fname);
    file_get_contents was found in the file lessc.inc.php
    Line 120: $root = $parser->parse(file_get_contents($realPath));
    Line 1012: $url = sprintf('data:%s;base64,%s', $mime, base64_encode(file_get_contents($fullpath)));
    Line 1922: $out = $this->compile(file_get_contents($fname), $fname);
    file_put_contents was found in the file lessc.inc.php
    Line 1927: return file_put_contents($outFname, $out);
    file_get_contents was found in the file demo-data-import.php
    Line 432: $content = file_get_contents( $file );
    Line 689: $action_config = json_decode( file_get_contents( $source_file ), true );
    Line 707: $theme_option_values = json_decode( file_get_contents( $theme_options_file ), true );
    Line 745: $data = json_decode( file_get_contents( $file ) );
    file_get_contents was found in the file demo-data-import.php
    Line 432: $content = file_get_contents( $file );
    Line 689: $action_config = json_decode( file_get_contents( $source_file ), true );
    Line 707: $theme_option_values = json_decode( file_get_contents( $theme_options_file ), true );
    Line 745: $data = json_decode( file_get_contents( $file ) );
    file_get_contents was found in the file demo-data-import.php
    Line 432: $content = file_get_contents( $file );
    Line 689: $action_config = json_decode( file_get_contents( $source_file ), true );
    Line 707: $theme_option_values = json_decode( file_get_contents( $theme_options_file ), true );
    Line 745: $data = json_decode( file_get_contents( $file ) );
    file_get_contents was found in the file demo-data-import.php
    Line 432: $content = file_get_contents( $file );
    Line 689: $action_config = json_decode( file_get_contents( $source_file ), true );
    Line 707: $theme_option_values = json_decode( file_get_contents( $theme_options_file ), true );
    Line 745: $data = json_decode( file_get_contents( $file ) );
  4. Malware : Network operations curl_init was found in the file tmhOAuth.php
    Line 635: $c = curl_init();
    curl_exec was found in the file tmhOAuth.php
    Line 703: $response = curl_exec($c);
  5. Admin menu : Themes should use add_theme_page() for adding admin pages. File class-tgm-plugin-activation.php :
    Line 731: $this->page_hook = call_user_func( 'add_submenu_page', $args['parent_slug'], $args['page_title'], $args['menu_t
    File option.php :
    Line 128: $hook_suffix = add_menu_page(
    File option.php :
    Line 140: $hook_suffix = add_submenu_page(
    File demo-data-import.php :
    Line 142: add_management_page(
    File WC_Admin_Attributes_Extended.php :
    Line 28: add_submenu_page( $this->parent_page_slug, esc_html__( 'Attributes', 'adven
  6. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was revslider.zip adventure-tours-data-types.zip js_composer.zip.
Warning
  1. core scripts deregistered : Core scripts deregistrationFound wp_deregister_script in loader.php. Themes must not deregister core scripts.
    Line 206: wp_deregister_script($name);
  2. theme tags : Presence of bad theme tagsThe tag blue has been deprecated, it must be removed from style.css header.The tag white has been deprecated, it must be removed from style.css header.The tag responsive-layout has been deprecated, it must be removed from style.css header.
  3. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are adventure-tours, adventure_tours, woocommerce.
  4. Plugin territory : Plugin territory functionalitiesThe theme uses the register_taxonomy() function, which is plugin-territory functionality.The theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  5. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  6. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  7. Editor style : Presence of editor styleNo reference to add_editor_style() was found in the theme. It is recommended that the theme implements editor styling, so as to make the editor content match the resulting post output in the theme, for a better user experience.
  8. I18N implementation : Proper use of _e(Possible variable $str found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 101: $url = $this->compileValue($this->lib_e($str));
    Possible variable $arg found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 1020: protected function lib_e($arg) {
    Possible variable $items found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 1025: return $this->lib_e($items[0]);
    Possible variable $string found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 1042: $template = $this->compileValue($this->lib_e($string));
    Possible variable $val found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 1056: $rep = $this->compileValue($this->lib_e($val));
    Possible variable $newUnit found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 1091: $this->compileValue($this->lib_e($newUnit)));
    Possible variable $res found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 1458: if (empty($value[2])) $res = $this->lib_e($res);
    Possible variable $key found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 1465: $key = $this->vPrefix . $this->compileValue($this->lib_e($key));
    Possible variable $part found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 1490: if ($strip) $part = $this->lib_e($part);
    Possible variable $this found in translation function in lessc.inc.php. Translation function calls should not contain PHP variables.
    Line 1496: return $this->lib_e($this->reduce($inner));
  9. CSS files : Presence of text domainText Domain: is missing from your style.css header.
  10. Date and time implementation : Use of the_time()At least one hard coded date was found in the file article-info.php. Function get_option( 'date_format' ) should be used instead.
  11. Screenshot : Screenshot fileBad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file theme-updater-update-notification.php.
    Line 21: <p><?php printf( esc_html__( 'To update %s, simply download the latest files from %s and install the upgraded version.','adventure-tours' ), $themeName, '<a href='http://themeforest.net/'>Themeforest</a>' ); ?></p>
    Possible hard-coded links were found in the file set.php.
    Line 93: <p><?php printf( esc_html__( 'This option panel is built using', 'adventure-tours' ) . ' <a href='http://vafpress.com/vafpress-framework'>' . esc_html__( 'Vafpress Framework
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  6. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  7. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  8. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  9. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  10. Use of includes : Use of include or requireThe theme appears to use include or require : bootstrap.php
    Line 9: require_once 'constant.php';
    Line 14: require_once 'autoload.php';
    Line 35: require_once($datasource);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.

This is a ThemeForest theme. Since Themeforest items are all checked by a human before they appear on their website, ThemeForest verification rules are more permissive than themecheck's and can give a better verification score ( Themeforest requirements ).

33
Critical alerts
  1. Unwanted files : hidden file(s) or folder(s) .travis.yml .jshintrc .jscsrc .editorconfig .csscomb.json .csslintrc .hound.yml was found.
  2. Malware : Network operations curl_init was found in the file tmhOAuth.php
    Line 635: $c = curl_init();
    curl_exec was found in the file tmhOAuth.php
    Line 703: $response = curl_exec($c);
  3. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was revslider.zip adventure-tours-data-types.zip js_composer.zip.
Warning
  1. core scripts deregistered : Core scripts deregistrationFound wp_deregister_script in loader.php. Themes must not deregister core scripts.
    Line 206: wp_deregister_script($name);
  2. theme tags : Presence of bad theme tagsThe tag blue has been deprecated, it must be removed from style.css header.The tag white has been deprecated, it must be removed from style.css header.The tag responsive-layout has been deprecated, it must be removed from style.css header.
  3. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are adventure-tours, adventure_tours, woocommerce.
  4. Plugin territory : Plugin territory functionalitiesThe theme uses the register_taxonomy() function, which is plugin-territory functionality.The theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  5. CSS files : Presence of text domainText Domain: is missing from your style.css header.
  6. Date and time implementation : Use of the_time()At least one hard coded date was found in the file article-info.php. Function get_option( 'date_format' ) should be used instead.
  7. Screenshot : Screenshot fileBad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file theme-updater-update-notification.php.
    Line 21: <p><?php printf( esc_html__( 'To update %s, simply download the latest files from %s and install the upgraded version.','adventure-tours' ), $themeName, '<a href='http://themeforest.net/'>Themeforest</a>' ); ?></p>
    Possible hard-coded links were found in the file set.php.
    Line 93: <p><?php printf( esc_html__( 'This option panel is built using', 'adventure-tours' ) . ' <a href='http://vafpress.com/vafpress-framework'>' . esc_html__( 'Vafpress Framework
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  6. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  7. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  8. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  9. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  10. Use of includes : Use of include or requireThe theme appears to use include or require : bootstrap.php
    Line 9: require_once 'constant.php';
    Line 14: require_once 'autoload.php';
    Line 35: require_once($datasource);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes