0
Validation results

BeautySpot

BeautySpot

WordPress 4.8.1 theme
0
Critical alerts
  1. Security breaches : Use of base64_decode() Found base64_decode in file OAuth.php.
    Line 202: $decoded_sig = base64_decode($signature);
  2. Security breaches : Use of base64_encode() Found base64_encode in file OAuth.php.
     return base64_encode(hash_hmac('sha1', $base_string, $key, true));
     return base64_encode($signature);
  3. Malware : Operations on file system file_get_contents was found in the file OAuth.php
    Line 272: file_get_contents(self::$POST_INPUT)
    file_get_contents was found in the file redux-config.php
    Line 1354: 'content'   => file_get_contents(dirname(__FILE__) . '/../README.md')
    Line 1396: 'content'   => nl2br(file_get_contents(trailingslashit(dirname(__FILE__)) . 'README.html'))
    file_get_contents was found in the file redux-config.php
    Line 1354: 'content'   => file_get_contents(dirname(__FILE__) . '/../README.md')
    Line 1396: 'content'   => nl2br(file_get_contents(trailingslashit(dirname(__FILE__)) . 'README.html'))
    file_get_contents was found in the file storm-twitter.class.php
    Line 91: $cache = file_get_contents($file);
    Line 148: $cache = json_decode(file_get_contents($this->getCacheLocation()),true);
    file_put_contents was found in the file storm-twitter.class.php
    Line 112: file_put_contents($file,json_encode($cache));
    Line 155: file_put_contents($file,json_encode($cache));
    file_get_contents was found in the file storm-twitter.class.php
    Line 91: $cache = file_get_contents($file);
    Line 148: $cache = json_decode(file_get_contents($this->getCacheLocation()),true);
    file_put_contents was found in the file storm-twitter.class.php
    Line 112: file_put_contents($file,json_encode($cache));
    Line 155: file_put_contents($file,json_encode($cache));
  4. Malware : Network operations curl_init was found in the file twitteroauth.php
    Line 199: $ci = curl_init();
    curl_exec was found in the file twitteroauth.php
    Line 225: $response = curl_exec($ci);
  5. Admin menu : Themes should use add_theme_page() for adding admin pages. File tgm-plugin-activation.class.php :
    Line 646: $this->page_hook = call_user_func( 'add_{$type}_page', $args['parent_slug'], $args['page_title'], $args['menu_t
    File redux-config.php :
    Line 1454: 'page_parent'       => 'themes.php',            // For a full list of options, visit: http://codex.wordpress.org/Function_Reference/add_submenu_page#Parameters
  6. Registration of theme features : Implementation of add_theme_support() add_theme_support() was found in the file functions.php. However get_post_format and/or has_post_format were not found.
  7. Post pagination : Implementation The theme doesn't have post pagination code in it. Use posts_nav_link() or paginate_links() or the_posts_pagination() or the_posts_navigation() or next_posts_link() and previous_posts_link() to add post pagination.
  8. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was redux-framework.zip lsvr-toolkit-beautyspot.zip js_composer.zip.
Warning
  1. theme tags : Presence of bad theme tagsThe tag responsive-layout has been deprecated, it must be removed from style.css header.
  2. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'This theme requires the following plugin: %1$s.', 'This theme requires the following plugins: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'This theme recommends the following plugin: %1$s.', 'This theme recommends the following plugins: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Sorry, but you do not have the correct permissions to install the %s plugin. Contact the administrator of this site for help on getting the plugin installed.', 'Sorry, but you do not have the correct permissions to install the %s plugins. Contact the administrator of this site for help on getting the plugins installed.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'The following required plugin is currently inactive: %1$s.', 'The following required plugins are currently inactive: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'The following recommended plugin is currently inactive: %1$s.', 'The following recommended plugins are currently inactive: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Sorry, but you do not have the correct permissions to activate the %s plugin. Contact the administrator of this site for help on getting the plugin activated.', 'Sorry, but you do not have the correct permissions to activate the %s plugins. Contact the administrator of this site for help on getting the plugins activated.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'The following plugin needs to be updated to its latest version to ensure maximum compatibility with this theme: %1$s.', 'The following plugins need to be updated to their latest version to ensure maximum compatibility with this theme: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Sorry, but you do not have the correct permissions to update the %s plugin. Contact the administrator of this site for help on getting the plugin updated.', 'Sorry, but you do not have the correct permissions to update the %s plugins. Contact the administrator of this site for help on getting the plugins updated.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Begin installing plugin', 'Begin installing plugins' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Begin activating plugin', 'Begin activating plugins' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments 'Current theme preview' in file redux-config.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments 'Current theme preview' in file redux-config.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'This <a href="%1$s">child theme</a> requires its parent theme, %2$s.' in file redux-config.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are beautyspot, tgmpa, lsvrtheme.
  3. Unwanted files : hidden file(s) or folder(s).ds_store was found.
  4. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  5. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  6. Editor style : Presence of editor styleNo reference to add_editor_style() was found in the theme. It is recommended that the theme implements editor styling, so as to make the editor content match the resulting post output in the theme, for a better user experience.
  7. Featured image : Use of the_post_thumbnail() instead of custom fields for thumbnailsNo reference to the_post_thumbnail was found in the theme.
  8. Tags : Tags displayThis theme doesn't seem to display tags.
  9. Screenshot : Screenshot fileScreenshot size is 880x660px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  2. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  3. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  4. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  5. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  6. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  7. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  8. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  9. Optional files : Presence of archive template file archive.phpThis theme does not contain optional file archive.php.
  10. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  11. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  12. Use of includes : Use of include or requireThe theme appears to use include or require : visual-composer-settings.php
    Line 1: <?php include_once( ABSPATH . 'wp-admin/includes/plugin.php' );
    Line 69: $template = include( dirname( __FILE__ ) . '/../components/visualcomposer/layouts/' . $
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : twitteroauth.php
    Line 10: require_once('OAuth.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : redux-config.php
    Line 83: require_once( ABSPATH .'/wp-admin/includes/file.php' );
    Line 229: require_once(ABSPATH . '/wp-admin/includes/file.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : twitter-feed.php
    Line 10: include( 'storm-twitter.class.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : storm-twitter.class.php
    Line 9: require_once( dirname(__FILE__) . '/../includes/oauth/twitteroauth.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.

This is a ThemeForest theme. Since Themeforest items are all checked by a human before they appear on their website, ThemeForest verification rules are more permissive than themecheck's and can give a better verification score ( Themeforest requirements ).

14
Critical alerts
  1. Malware : Network operations curl_init was found in the file twitteroauth.php
    Line 199: $ci = curl_init();
    curl_exec was found in the file twitteroauth.php
    Line 225: $response = curl_exec($ci);
  2. Registration of theme features : Implementation of add_theme_support() add_theme_support() was found in the file functions.php. However get_post_format and/or has_post_format were not found.
  3. Post pagination : Implementation The theme doesn't have post pagination code in it. Use posts_nav_link() or paginate_links() or the_posts_pagination() or the_posts_navigation() or next_posts_link() and previous_posts_link() to add post pagination.
  4. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was redux-framework.zip lsvr-toolkit-beautyspot.zip js_composer.zip.
Warning
  1. theme tags : Presence of bad theme tagsThe tag responsive-layout has been deprecated, it must be removed from style.css header.
  2. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'This theme requires the following plugin: %1$s.', 'This theme requires the following plugins: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'This theme recommends the following plugin: %1$s.', 'This theme recommends the following plugins: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Sorry, but you do not have the correct permissions to install the %s plugin. Contact the administrator of this site for help on getting the plugin installed.', 'Sorry, but you do not have the correct permissions to install the %s plugins. Contact the administrator of this site for help on getting the plugins installed.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'The following required plugin is currently inactive: %1$s.', 'The following required plugins are currently inactive: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'The following recommended plugin is currently inactive: %1$s.', 'The following recommended plugins are currently inactive: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Sorry, but you do not have the correct permissions to activate the %s plugin. Contact the administrator of this site for help on getting the plugin activated.', 'Sorry, but you do not have the correct permissions to activate the %s plugins. Contact the administrator of this site for help on getting the plugins activated.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'The following plugin needs to be updated to its latest version to ensure maximum compatibility with this theme: %1$s.', 'The following plugins need to be updated to their latest version to ensure maximum compatibility with this theme: %1$s.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Sorry, but you do not have the correct permissions to update the %s plugin. Contact the administrator of this site for help on getting the plugin updated.', 'Sorry, but you do not have the correct permissions to update the %s plugins. Contact the administrator of this site for help on getting the plugins updated.' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Begin installing plugin', 'Begin installing plugins' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Begin activating plugin', 'Begin activating plugins' in file tgm-plugin-settings.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments 'Current theme preview' in file redux-config.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments 'Current theme preview' in file redux-config.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'This <a href="%1$s">child theme</a> requires its parent theme, %2$s.' in file redux-config.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are beautyspot, tgmpa, lsvrtheme.
  3. Unwanted files : hidden file(s) or folder(s).ds_store was found.
  4. Featured image : Use of the_post_thumbnail() instead of custom fields for thumbnailsNo reference to the_post_thumbnail was found in the theme.
  5. Tags : Tags displayThis theme doesn't seem to display tags.
  6. Screenshot : Screenshot fileScreenshot size is 880x660px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  2. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  3. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  4. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  5. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  6. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  7. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  8. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  9. Optional files : Presence of archive template file archive.phpThis theme does not contain optional file archive.php.
  10. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  11. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  12. Use of includes : Use of include or requireThe theme appears to use include or require : visual-composer-settings.php
    Line 1: <?php include_once( ABSPATH . 'wp-admin/includes/plugin.php' );
    Line 69: $template = include( dirname( __FILE__ ) . '/../components/visualcomposer/layouts/' . $
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : twitteroauth.php
    Line 10: require_once('OAuth.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : redux-config.php
    Line 83: require_once( ABSPATH .'/wp-admin/includes/file.php' );
    Line 229: require_once(ABSPATH . '/wp-admin/includes/file.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : twitter-feed.php
    Line 10: include( 'storm-twitter.class.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : storm-twitter.class.php
    Line 9: require_once( dirname(__FILE__) . '/../includes/oauth/twitteroauth.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes