0
Validation results

Canvas

Canvas

WordPress 4.9.8 theme
0
Critical alerts
  1. Title : Title No reference to add_theme_support( "title-tag" ) was found in the theme.The theme needs to have <title> tags, ideally in the header.php file.The theme needs to have a call to wp_title(), ideally in the header.php file.The <title> tags can only contain a call to wp_title(). Use the wp_title filter to modify the output.
  2. Security breaches : Use of backticks execution operators in PHP code Found ` in file thumb.php.
    Line 759: $out = `$exec -o1 $tempfile`; //you can use up to -o7 but it really slows things d
    Line 774: $out = `$exec $tempfile $tempfile2`;
    Line 959: $out = `$command`;
  3. Security breaches : Use of base64_decode() Found base64_decode in file thumb.php.
    Line 221: $imgData = base64_decode('R0lGODlhUAAMAIAAAP8AAP///yH5BAAHAP8ALAAAAABQAAwAAAJpjI+py+0P
    Found base64_decode in file admin-functions.php.
    Line 1096: $cred = unserialize(base64_decode($_POST['woo_ftp_cred']));
    Line 1175: $cred = unserialize( base64_decode( $_POST['woo_ftp_cred'] ) );
  4. Security breaches : Use of base64_encode() Found base64_encode in file admin-functions.php.
     <input type='hidden' name='woo_ftp_cred' value='<?php echo esc_attr( base64_encode(serialize($_POST))); ?>' />
  5. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe src="' . esc_url( $src_url ) . '" scrolling="no" frameborder="0" allowTransparency="true" style="border:none; overflow:hidden; width:' . esc_attr( $widthpx ) . '; height:' . esc_attr( $height ) . 'px;"> in file admin-shortcodes.php.
    Line 582: <iframe src='' . esc_url( $src_url ) . '' scrolling='no' frameborder='0' al
  6. Malware : Operations on file system file_get_contents was found in the file admin-backup.php
    Line 273: $upload = file_get_contents( $_FILES['woothemes-import-file']['tmp_name'] );
    fopen was found in the file thumb.php
    Line 796: $fp = fopen($tempfile,'r',0,$context);
    Line 803: $fh = fopen($lockFile, 'w');
    Line 1020: $fp = fopen($this->cachefile, 'rb');
    Line 1166: self::$curlFH = fopen($tempfile, 'w');
    file_put_contents was found in the file thumb.php
    Line 797: file_put_contents($tempfile4, $this->filePrependSecurityBlock . $imgType . 
    Line 798: file_put_contents($tempfile4, $fp, FILE_APPEND);
    Line 1216: if(! file_put_contents($tempfile, $img)){
    file_put_contents was found in the file thumb.php
    Line 797: file_put_contents($tempfile4, $this->filePrependSecurityBlock . $imgType . 
    Line 798: file_put_contents($tempfile4, $fp, FILE_APPEND);
    Line 1216: if(! file_put_contents($tempfile, $img)){
    fclose was found in the file thumb.php
    Line 799: fclose($fp);
    Line 811: fclose($fh);
    Line 814: fclose($fh);
    Line 1032: fclose($fp);
    Line 1184: fclose(self::$curlFH);
    fopen was found in the file thumb.php
    Line 796: $fp = fopen($tempfile,'r',0,$context);
    Line 803: $fh = fopen($lockFile, 'w');
    Line 1020: $fp = fopen($this->cachefile, 'rb');
    Line 1166: self::$curlFH = fopen($tempfile, 'w');
    fclose was found in the file thumb.php
    Line 799: fclose($fp);
    Line 811: fclose($fh);
    Line 814: fclose($fh);
    Line 1032: fclose($fp);
    Line 1184: fclose(self::$curlFH);
    fclose was found in the file thumb.php
    Line 799: fclose($fp);
    Line 811: fclose($fh);
    Line 814: fclose($fh);
    Line 1032: fclose($fp);
    Line 1184: fclose(self::$curlFH);
    fwrite was found in the file thumb.php
    Line 1006: fwrite(self::$curlFH, $d);
    fopen was found in the file thumb.php
    Line 796: $fp = fopen($tempfile,'r',0,$context);
    Line 803: $fh = fopen($lockFile, 'w');
    Line 1020: $fp = fopen($this->cachefile, 'rb');
    Line 1166: self::$curlFH = fopen($tempfile, 'w');
    fread was found in the file thumb.php
    Line 1023: $imgType = fread($fp, 3);
    fclose was found in the file thumb.php
    Line 799: fclose($fp);
    Line 811: fclose($fh);
    Line 814: fclose($fh);
    Line 1032: fclose($fp);
    Line 1184: fclose(self::$curlFH);
    file_get_contents was found in the file thumb.php
    Line 1036: $content = file_get_contents ($this->cachefile);
    Line 1040: $this->debug(3, 'Served using file_get_contents and echo');
    Line 1202: $img = @file_get_contents ($url);
    Line 1237: $content = @file_get_contents ($file);
    fopen was found in the file thumb.php
    Line 796: $fp = fopen($tempfile,'r',0,$context);
    Line 803: $fh = fopen($lockFile, 'w');
    Line 1020: $fp = fopen($this->cachefile, 'rb');
    Line 1166: self::$curlFH = fopen($tempfile, 'w');
    fclose was found in the file thumb.php
    Line 799: fclose($fp);
    Line 811: fclose($fh);
    Line 814: fclose($fh);
    Line 1032: fclose($fp);
    Line 1184: fclose(self::$curlFH);
    file_get_contents was found in the file thumb.php
    Line 1036: $content = file_get_contents ($this->cachefile);
    Line 1040: $this->debug(3, 'Served using file_get_contents and echo');
    Line 1202: $img = @file_get_contents ($url);
    Line 1237: $content = @file_get_contents ($file);
    file_put_contents was found in the file thumb.php
    Line 797: file_put_contents($tempfile4, $this->filePrependSecurityBlock . $imgType . 
    Line 798: file_put_contents($tempfile4, $fp, FILE_APPEND);
    Line 1216: if(! file_put_contents($tempfile, $img)){
    readfile was found in the file thumb.php
    Line 1233: $bytes = @readfile($file);
    file_get_contents was found in the file thumb.php
    Line 1036: $content = file_get_contents ($this->cachefile);
    Line 1040: $this->debug(3, 'Served using file_get_contents and echo');
    Line 1202: $img = @file_get_contents ($url);
    Line 1237: $content = @file_get_contents ($file);
  7. Malware : Network operations curl_init was found in the file thumb.php
    Line 1164: if(function_exists('curl_init')){
    Line 1173: $curl = curl_init($url);
    curl_exec was found in the file thumb.php
    Line 1183: $curlResult = curl_exec($curl);
  8. Admin menu : Themes should use add_theme_page() for adding admin pages. File woo-layout.class.php :
    Line 154: if ( function_exists( 'add_submenu_page' ) ) {	
    Line 156: $this->admin_page = add_submenu_page('woothemes', __( 'Layout Manager', 'woothemes' ), __( 'Lay
    File woo-layout.class.php :
    Line 154: if ( function_exists( 'add_submenu_page' ) ) {	
    Line 156: $this->admin_page = add_submenu_page('woothemes', __( 'Layout Manager', 'woothemes' ), __( 'Lay
    File woo-hooks.class.php :
    Line 134: if ( function_exists( 'add_submenu_page' ) ) {	
    Line 136: $this->admin_page = add_submenu_page('woothemes', __( 'Hook Manager', 'woothemes' ), __( 'Hook 
    File woo-hooks.class.php :
    Line 134: if ( function_exists( 'add_submenu_page' ) ) {	
    Line 136: $this->admin_page = add_submenu_page('woothemes', __( 'Hook Manager', 'woothemes' ), __( 'Hook 
    File woo-meta.class.php :
    Line 137: if ( function_exists( 'add_submenu_page' ) ) {
    Line 138: $this->admin_page = add_submenu_page( 'woothemes', __( 'Meta Manager', 'woothemes' ), __( 'Meta
    File woo-meta.class.php :
    Line 137: if ( function_exists( 'add_submenu_page' ) ) {
    Line 138: $this->admin_page = add_submenu_page( 'woothemes', __( 'Meta Manager', 'woothemes' ), __( 'Meta
    File admin-backup.php :
    Line 74: $this->admin_page = add_submenu_page('woothemes', __( 'WooThemes Settings Backup', 'woothemes' 
    File admin-interface.php :
    Line 185: if( function_exists( 'add_object_page' ) ) {
    Line 186: add_object_page ( 'Page Title', $themename, 'manage_options', 'woothemes', 
    File admin-interface.php :
    Line 185: if( function_exists( 'add_object_page' ) ) {
    Line 186: add_object_page ( 'Page Title', $themename, 'manage_options', 'woothemes', 
    File admin-interface.php :
    Line 188: add_menu_page ( 'Page Title', $themename, 'manage_options', 'woothemes_home
    File admin-interface.php :
    Line 190: $woopage = add_submenu_page( 'woothemes', $themename, __( 'Theme Options', 'woothemes'
    Line 195: $wooframeworksettings = add_submenu_page( 'woothemes', __( 'Framework Settings', 'woothemes' ), __(
    Line 205: $woothemepage = add_submenu_page( 'woothemes', 'WooFramework Update', 'Update Framework', '
    File admin-interface.php :
    Line 190: $woopage = add_submenu_page( 'woothemes', $themename, __( 'Theme Options', 'woothemes'
    Line 195: $wooframeworksettings = add_submenu_page( 'woothemes', __( 'Framework Settings', 'woothemes' ), __(
    Line 205: $woothemepage = add_submenu_page( 'woothemes', 'WooFramework Update', 'Update Framework', '
    File admin-interface.php :
    Line 190: $woopage = add_submenu_page( 'woothemes', $themename, __( 'Theme Options', 'woothemes'
    Line 195: $wooframeworksettings = add_submenu_page( 'woothemes', __( 'Framework Settings', 'woothemes' ), __(
    Line 205: $woothemepage = add_submenu_page( 'woothemes', 'WooFramework Update', 'Update Framework', '
  9. Hidden admin bar : Hidden admin Bar Themes should not hide admin bar. Detected in file : admin-functions.php.
  10. Deprecated functions : screen_icon screen_icon found in file admin-backup.php. Deprecated since version 3.8.
    Line 103: <?php screen_icon( 'tools' ); ?>	
    screen_icon found in file admin-functions.php. Deprecated since version 3.8.
    Line 1133: <?php screen_icon( 'tools' ); ?>
  11. Deprecated functions : add_object_page add_object_page found in file admin-interface.php. Deprecated since version 4.5. Use add_menu_page instead.
    Line 186: add_object_page ( 'Page Title', $themename, 'manage_options', 'woothemes', 
  12. Deprecated functions : get_currentuserinfo get_currentuserinfo found in file admin-tumblog-quickpress.php. Deprecated since version 4.5. Use wp_get_current_user instead.
    Line 162: get_currentuserinfo();
Warning
  1. special URIs : Presence of bad theme tagsTheme URI and Author URI should not be the same.
  2. theme tags : Presence of bad theme tagsFound wrong tag canvas in style.css header.Found wrong tag woothemes in style.css header.
  3. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function __, with the arguments 'Below you can control settings for the Magazine page template. Please refer to <a href="%s">documentation</a> on how to setup the page template.' in file theme-options.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Below you can control settings for the Business page template. Please refer to <a href="%s">documentation</a> on how to setup the page template. You can add slider posts with the <strong><em>Slides</em></strong> custom post type.' in file theme-options.php.
  4. Cdn : Use of CDNFound the URL of a CDN in the code: html5shiv.googlecode.com/svn/trunk/html5.js. CSS or Javascript resources should not be loaded from a CDN. These resources should be bundled with the theme.
  5. Plugin territory : Plugin territory functionalitiesThe theme uses the register_post_type() function, which is plugin-territory functionality.The theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  6. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  7. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  8. Deprecated functions : post_permalinkpost_permalink found in file admin-express-functions-deprecated.php. Deprecated since version 4.4. Use get_permalink instead.
    Line 120: $link = post_permalink($entry['ID']);
    post_permalink found in file admin-express-functions.php. Deprecated since version 4.4. Use get_permalink instead.
    Line 136: $link = post_permalink($entry['ID']);
  9. Deprecated functions : screen_iconscreen_icon found in file admin-backup.php. Deprecated since version 3.8.
    Line 103: <?php screen_icon( 'tools' ); ?>	
    screen_icon found in file admin-functions.php. Deprecated since version 3.8.
    Line 1133: <?php screen_icon( 'tools' ); ?>
  10. CSS files : Presence of text domainText Domain: is missing from your style.css header.
  11. CSS files : Presence of .sticky class.sticky css class is needed in theme css.
  12. CSS files : Presence of .gallery-caption class.gallery-caption css class is needed in theme css.
  13. Date and time implementation : Use of date_i18n()At least one hard coded date was found in the file admin-tumblog-quickpress.php. Function get_option( 'date_format' ) should be used instead.
  14. Date and time implementation : Use of the_time()At least one hard coded date was found in the file template-timeline.php. Function get_option( 'date_format' ) should be used instead.
  15. Screenshot : Screenshot fileScreenshot dimensions are wrong! Detected: 300x250px (6:5). Ratio of width to height should be 4:3.Screenshot size is 300x250px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file theme-options.php.
    Line 1445: 'desc' => __( 'This will enable the <a href='http://code.google.com/p/timthumb/'>TimThumb</a> (thumb.php) script which d
    Line 1535: 'std' => sprintf( __( 'Tumblog will allow you to publish content using the WooTumblog functionality, including the Express for WordPress iPhone App. If you would like to use the iPhone app, you will need to enable XML-RPC publishing under Settings->Writing. Find out more at %s.', 'woothemes' ), '<a href='http://express-app.com/' target='_blank'>Express-App.com</a>' ),
    Line 1683: 'desc' => __( 'Enter your  <a href='http://www.twitter.com/'>Twitter</a> URL e.g. http://www.twitter.com/woothe
    Line 1689: 'desc' => __( 'Enter your  <a href='http://www.facebook.com/'>Facebook</a> URL e.g. http://www.facebook.com/woo
    Line 1695: 'desc' => __( 'Enter your  <a href='http://www.youtube.com/'>YouTube</a> URL e.g. http://www.youtube.com/woothe
    Line 1701: 'desc' => __( 'Enter your  <a href='http://www.flickr.com/'>Flickr</a> URL e.g. http://www.flickr.com/woothemes
    Line 1707: 'desc' => __( 'Enter your  <a href='http://www.www.linkedin.com.com/'>LinkedIn</a> URL e.g. http://www.linkedin
    Line 1713: 'desc' => __( 'Enter your <a href='http://www.delicious.com/'>Delicious</a> URL e.g. http://www.delicious.com/
    Line 1719: 'desc' => __( 'Enter your <a href='http://plus.google.com/'>Google+</a> URL e.g. https://plus.google.com/10456
    Line 1725: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://dribbble.com/woothemes', 'woothemes' ), '<a href='http://dribbble.co
    Line 1731: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://instagram.com/woothemes', 'woothemes' ), '<a href='http://instagram.
    Line 1737: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://vimeo.com/woothemes', 'woothemes' ), '<a href='http://vimeo.com/'>'.
    Line 1743: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://pinterest.com/woothemes', 'woothemes' ), '<a href='http://pinterest.
    Line 2000: 'desc' => sprintf( __( 'Enter an optional URL to show in the %s for this portfolio item.', 'woothemes' ), '<a href='http://www.no-margin-for-errors.com/projects/prettyphoto-jquery-lightbox-cl
    Possible hard-coded links were found in the file widget-woo-flickr.php.
    Line 185: <label for='<?php echo $this->get_field_id( 'id' ); ?>'><?php _e( 'Flickr ID (<a href='http://www.idgettr.com'>idGettr</a>):', 'woothemes' ); ?></label>
    Possible hard-coded links were found in the file widget-woo-blogauthor.php.
    Line 198: <label for='<?php echo $this->get_field_id( 'custom_email' ); ?>'><?php _e( '<a href='http://www.gravatar.com/'>Gravatar</a> E-mail:', 'woothemes' ); ?></label>
    Possible hard-coded links were found in the file admin-backup.php.
    Line 166: '<p>' . sprintf( __( 'Please post your query on the %sWooThemes Support Desk%s where we will do our best to assist you further.', 'woothemes' ), '<a href='http://support.woothemes.com/' target='_blank'>', '</a>' ) . '</p>';
    Possible hard-coded links were found in the file dialog.php.
    Line 88: <p><?php echo __( 'Pick a fight: (1) If you already have a theme from WooThemes, install and activate it or (2) if you don\'t yet have one of the awesome WooThemes head over to the <a href='http://www.woothemes.com/themes/' target='_blank' title='WooThemes Gallery'
    Possible hard-coded links were found in the file admin-framework-settings.php.
    Line 170: 'std' => sprintf( __( 'PressTrends is a simple usage tracker that allows us to see how our customers are using WooThemes themes - so that we can help improve them for you. %sNone%s of your personal data is sent to PressTrends.%sFor more information, please view the PressTrends %s.', 'woothemes' ), '<strong>', '</strong>', '<br /><br />', '<a href='http://presstrends.io/privacy' target='_blank'>' . __( 'privacy policy', 'w
    Possible hard-coded links were found in the file admin-interface.php.
    Line 1706: $update_message = '<div class='update_available status-' . $status . ''>' . __( 'Theme update is available', 'woothemes' ) . ' (v.' . $latest_version_via_rss['version'] . ') - <a href='http://www.woothemes.com/products/'>' . __( 'Get the new version', 'woothem
    Line 1775: $html = '<div id='theme_update' class='updated fade'><p>' . sprintf( __( 'Theme update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='http://www.woothemes.com/products/'>', '</a>', '<a href='http://www.woothem
    Line 1706: $update_message = '<div class='update_available status-' . $status . ''>' . __( 'Theme update is available', 'woothemes' ) . ' (v.' . $latest_version_via_rss['version'] . ') - <a href='http://www.woothemes.com/products/'>' . __( 'Get the new version', 'woothem
    Line 1775: $html = '<div id='theme_update' class='updated fade'><p>' . sprintf( __( 'Theme update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='http://www.woothemes.com/products/'>', '</a>', '<a href='http://www.woothem
    Line 1802: $html = '<div id='wooframework_update' class='updated fade'><p>' . sprintf( __( 'WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
    Line 1850: $html = '<div id='wooframework_important_update' class='error fade'><p>' . sprintf( __( 'An important WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
    Line 1802: $html = '<div id='wooframework_update' class='updated fade'><p>' . sprintf( __( 'WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
    Line 1850: $html = '<div id='wooframework_important_update' class='error fade'><p>' . sprintf( __( 'An important WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  6. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  7. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  8. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  9. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  10. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  11. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  12. Use of includes : Use of include or requireThe theme appears to use include or require : woo-layout.php
    Line 2: require_once( 'classes/woo-layout.class.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-layout.class.php
    Line 181: include_once( $this->plugin_path . '/screens/admin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : widget-woo-search.php
    Line 89: include( $search_file_path );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-hooks.php
    Line 2: require_once( 'classes/woo-hooks.class.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-hooks.class.php
    Line 161: include_once( $this->plugin_path . '/screens/admin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : theme-actions.php
    Line 2055: require_once ( $includes_path . 'tumblog/theme-tumblog.php' );		// Tumblog 
    Line 2058: require_once( $includes_path . 'tumblog/wootumblog_postformat.class.php' );
    Line 2060: require_once ( $includes_path . 'tumblog/theme-custom-post-types.php' );	//
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-meta.php
    Line 2: require_once( 'classes/woo-meta.class.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-meta.class.php
    Line 159: include_once( $this->plugin_path . '/screens/admin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : admin-tumblog-quickpress.php
    Line 47: require_once ($iphone_function_file);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : dialog-js.php
    Line 12: require_once( $url . '/wp-load.php' );
    Line 36: require_once( $woo_framework_functions_path . $delimiter . 'admin-functions
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : dialog.php
    Line 12: require_once( $url . '/wp-load.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : admin-framework-settings.php
    Line 15: include_once(ABSPATH . WPINC . '/feed.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : admin-interface.php
    Line 278: include_once( ABSPATH . WPINC . '/feed.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : admin-init.php
    Line 38: require_once ( $functions_path . 'admin-functions.php' );					// Custom fun
    Line 39: require_once ( $functions_path . 'admin-setup.php' );						// Options panel
    Line 40: require_once ( $functions_path . 'admin-custom.php' );						// Custom field
    Line 41: require_once ( $functions_path . 'admin-interface.php' );					// Admin Inte
    Line 42: require_once ( $functions_path . 'admin-framework-settings.php' );			// Fra
    Line 43: require_once ( $functions_path . 'admin-seo.php' );							// Framework SEO 
    Line 44: require_once ( $functions_path . 'admin-sbm.php' ); 						// Framework Side
    Line 45: require_once ( $functions_path . 'admin-medialibrary-uploader.php' ); 		// 
    Line 46: require_once ( $functions_path . 'admin-hooks.php' );						// Definition of
    Line 49: require_once ( $functions_path . 'admin-custom-nav.php' );				// Woo Custom
    Line 52: require_once ( $functions_path . 'admin-shortcodes.php' );					// Woo Short
    Line 56: require_once ( $functions_path . 'admin-shortcode-generator.php' ); 		// Fr
    Line 57: require_once ( $functions_path . 'admin-backup.php' ); 						// Theme Optio
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : thumb.php
    Line 25: if( file_exists(dirname(__FILE__) . '/../timthumb-config.php'))	require_once('../timthumb-config.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.

This is a ThemeForest theme. Since Themeforest items are all checked by a human before they appear on their website, ThemeForest verification rules are more permissive than themecheck's and can give a better verification score ( Themeforest requirements ).

0
Critical alerts
  1. Title : Title No reference to add_theme_support( "title-tag" ) was found in the theme.The theme needs to have <title> tags, ideally in the header.php file.The theme needs to have a call to wp_title(), ideally in the header.php file.The <title> tags can only contain a call to wp_title(). Use the wp_title filter to modify the output.
  2. Security breaches : Use of backticks execution operators in PHP code Found ` in file thumb.php.
    Line 759: $out = `$exec -o1 $tempfile`; //you can use up to -o7 but it really slows things d
    Line 774: $out = `$exec $tempfile $tempfile2`;
    Line 959: $out = `$command`;
  3. Malware : Network operations curl_init was found in the file thumb.php
    Line 1164: if(function_exists('curl_init')){
    Line 1173: $curl = curl_init($url);
    curl_exec was found in the file thumb.php
    Line 1183: $curlResult = curl_exec($curl);
  4. Hidden admin bar : Hidden admin Bar Themes should not hide admin bar. Detected in file : admin-functions.php.
  5. Deprecated functions : screen_icon screen_icon found in file admin-backup.php. Deprecated since version 3.8.
    Line 103: <?php screen_icon( 'tools' ); ?>	
    screen_icon found in file admin-functions.php. Deprecated since version 3.8.
    Line 1133: <?php screen_icon( 'tools' ); ?>
  6. Deprecated functions : add_object_page add_object_page found in file admin-interface.php. Deprecated since version 4.5. Use add_menu_page instead.
    Line 186: add_object_page ( 'Page Title', $themename, 'manage_options', 'woothemes', 
  7. Deprecated functions : get_currentuserinfo get_currentuserinfo found in file admin-tumblog-quickpress.php. Deprecated since version 4.5. Use wp_get_current_user instead.
    Line 162: get_currentuserinfo();
Warning
  1. special URIs : Presence of bad theme tagsTheme URI and Author URI should not be the same.
  2. theme tags : Presence of bad theme tagsFound wrong tag canvas in style.css header.Found wrong tag woothemes in style.css header.
  3. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function __, with the arguments 'Below you can control settings for the Magazine page template. Please refer to <a href="%s">documentation</a> on how to setup the page template.' in file theme-options.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Below you can control settings for the Business page template. Please refer to <a href="%s">documentation</a> on how to setup the page template. You can add slider posts with the <strong><em>Slides</em></strong> custom post type.' in file theme-options.php.
  4. Cdn : Use of CDNFound the URL of a CDN in the code: html5shiv.googlecode.com/svn/trunk/html5.js. CSS or Javascript resources should not be loaded from a CDN. These resources should be bundled with the theme.
  5. Plugin territory : Plugin territory functionalitiesThe theme uses the register_post_type() function, which is plugin-territory functionality.The theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  6. Deprecated functions : post_permalinkpost_permalink found in file admin-express-functions-deprecated.php. Deprecated since version 4.4. Use get_permalink instead.
    Line 120: $link = post_permalink($entry['ID']);
    post_permalink found in file admin-express-functions.php. Deprecated since version 4.4. Use get_permalink instead.
    Line 136: $link = post_permalink($entry['ID']);
  7. Deprecated functions : screen_iconscreen_icon found in file admin-backup.php. Deprecated since version 3.8.
    Line 103: <?php screen_icon( 'tools' ); ?>	
    screen_icon found in file admin-functions.php. Deprecated since version 3.8.
    Line 1133: <?php screen_icon( 'tools' ); ?>
  8. CSS files : Presence of text domainText Domain: is missing from your style.css header.
  9. CSS files : Presence of .sticky class.sticky css class is needed in theme css.
  10. CSS files : Presence of .gallery-caption class.gallery-caption css class is needed in theme css.
  11. Date and time implementation : Use of date_i18n()At least one hard coded date was found in the file admin-tumblog-quickpress.php. Function get_option( 'date_format' ) should be used instead.
  12. Date and time implementation : Use of the_time()At least one hard coded date was found in the file template-timeline.php. Function get_option( 'date_format' ) should be used instead.
  13. Screenshot : Screenshot fileScreenshot dimensions are wrong! Detected: 300x250px (6:5). Ratio of width to height should be 4:3.Screenshot size is 300x250px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file theme-options.php.
    Line 1445: 'desc' => __( 'This will enable the <a href='http://code.google.com/p/timthumb/'>TimThumb</a> (thumb.php) script which d
    Line 1535: 'std' => sprintf( __( 'Tumblog will allow you to publish content using the WooTumblog functionality, including the Express for WordPress iPhone App. If you would like to use the iPhone app, you will need to enable XML-RPC publishing under Settings->Writing. Find out more at %s.', 'woothemes' ), '<a href='http://express-app.com/' target='_blank'>Express-App.com</a>' ),
    Line 1683: 'desc' => __( 'Enter your  <a href='http://www.twitter.com/'>Twitter</a> URL e.g. http://www.twitter.com/woothe
    Line 1689: 'desc' => __( 'Enter your  <a href='http://www.facebook.com/'>Facebook</a> URL e.g. http://www.facebook.com/woo
    Line 1695: 'desc' => __( 'Enter your  <a href='http://www.youtube.com/'>YouTube</a> URL e.g. http://www.youtube.com/woothe
    Line 1701: 'desc' => __( 'Enter your  <a href='http://www.flickr.com/'>Flickr</a> URL e.g. http://www.flickr.com/woothemes
    Line 1707: 'desc' => __( 'Enter your  <a href='http://www.www.linkedin.com.com/'>LinkedIn</a> URL e.g. http://www.linkedin
    Line 1713: 'desc' => __( 'Enter your <a href='http://www.delicious.com/'>Delicious</a> URL e.g. http://www.delicious.com/
    Line 1719: 'desc' => __( 'Enter your <a href='http://plus.google.com/'>Google+</a> URL e.g. https://plus.google.com/10456
    Line 1725: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://dribbble.com/woothemes', 'woothemes' ), '<a href='http://dribbble.co
    Line 1731: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://instagram.com/woothemes', 'woothemes' ), '<a href='http://instagram.
    Line 1737: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://vimeo.com/woothemes', 'woothemes' ), '<a href='http://vimeo.com/'>'.
    Line 1743: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://pinterest.com/woothemes', 'woothemes' ), '<a href='http://pinterest.
    Line 2000: 'desc' => sprintf( __( 'Enter an optional URL to show in the %s for this portfolio item.', 'woothemes' ), '<a href='http://www.no-margin-for-errors.com/projects/prettyphoto-jquery-lightbox-cl
    Possible hard-coded links were found in the file widget-woo-flickr.php.
    Line 185: <label for='<?php echo $this->get_field_id( 'id' ); ?>'><?php _e( 'Flickr ID (<a href='http://www.idgettr.com'>idGettr</a>):', 'woothemes' ); ?></label>
    Possible hard-coded links were found in the file widget-woo-blogauthor.php.
    Line 198: <label for='<?php echo $this->get_field_id( 'custom_email' ); ?>'><?php _e( '<a href='http://www.gravatar.com/'>Gravatar</a> E-mail:', 'woothemes' ); ?></label>
    Possible hard-coded links were found in the file admin-backup.php.
    Line 166: '<p>' . sprintf( __( 'Please post your query on the %sWooThemes Support Desk%s where we will do our best to assist you further.', 'woothemes' ), '<a href='http://support.woothemes.com/' target='_blank'>', '</a>' ) . '</p>';
    Possible hard-coded links were found in the file dialog.php.
    Line 88: <p><?php echo __( 'Pick a fight: (1) If you already have a theme from WooThemes, install and activate it or (2) if you don\'t yet have one of the awesome WooThemes head over to the <a href='http://www.woothemes.com/themes/' target='_blank' title='WooThemes Gallery'
    Possible hard-coded links were found in the file admin-framework-settings.php.
    Line 170: 'std' => sprintf( __( 'PressTrends is a simple usage tracker that allows us to see how our customers are using WooThemes themes - so that we can help improve them for you. %sNone%s of your personal data is sent to PressTrends.%sFor more information, please view the PressTrends %s.', 'woothemes' ), '<strong>', '</strong>', '<br /><br />', '<a href='http://presstrends.io/privacy' target='_blank'>' . __( 'privacy policy', 'w
    Possible hard-coded links were found in the file admin-interface.php.
    Line 1706: $update_message = '<div class='update_available status-' . $status . ''>' . __( 'Theme update is available', 'woothemes' ) . ' (v.' . $latest_version_via_rss['version'] . ') - <a href='http://www.woothemes.com/products/'>' . __( 'Get the new version', 'woothem
    Line 1775: $html = '<div id='theme_update' class='updated fade'><p>' . sprintf( __( 'Theme update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='http://www.woothemes.com/products/'>', '</a>', '<a href='http://www.woothem
    Line 1706: $update_message = '<div class='update_available status-' . $status . ''>' . __( 'Theme update is available', 'woothemes' ) . ' (v.' . $latest_version_via_rss['version'] . ') - <a href='http://www.woothemes.com/products/'>' . __( 'Get the new version', 'woothem
    Line 1775: $html = '<div id='theme_update' class='updated fade'><p>' . sprintf( __( 'Theme update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='http://www.woothemes.com/products/'>', '</a>', '<a href='http://www.woothem
    Line 1802: $html = '<div id='wooframework_update' class='updated fade'><p>' . sprintf( __( 'WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
    Line 1850: $html = '<div id='wooframework_important_update' class='error fade'><p>' . sprintf( __( 'An important WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
    Line 1802: $html = '<div id='wooframework_update' class='updated fade'><p>' . sprintf( __( 'WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
    Line 1850: $html = '<div id='wooframework_important_update' class='error fade'><p>' . sprintf( __( 'An important WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  6. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  7. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  8. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  9. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  10. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  11. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  12. Use of includes : Use of include or requireThe theme appears to use include or require : woo-layout.php
    Line 2: require_once( 'classes/woo-layout.class.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-layout.class.php
    Line 181: include_once( $this->plugin_path . '/screens/admin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : widget-woo-search.php
    Line 89: include( $search_file_path );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-hooks.php
    Line 2: require_once( 'classes/woo-hooks.class.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-hooks.class.php
    Line 161: include_once( $this->plugin_path . '/screens/admin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : theme-actions.php
    Line 2055: require_once ( $includes_path . 'tumblog/theme-tumblog.php' );		// Tumblog 
    Line 2058: require_once( $includes_path . 'tumblog/wootumblog_postformat.class.php' );
    Line 2060: require_once ( $includes_path . 'tumblog/theme-custom-post-types.php' );	//
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-meta.php
    Line 2: require_once( 'classes/woo-meta.class.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : woo-meta.class.php
    Line 159: include_once( $this->plugin_path . '/screens/admin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : admin-tumblog-quickpress.php
    Line 47: require_once ($iphone_function_file);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : dialog-js.php
    Line 12: require_once( $url . '/wp-load.php' );
    Line 36: require_once( $woo_framework_functions_path . $delimiter . 'admin-functions
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : dialog.php
    Line 12: require_once( $url . '/wp-load.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : admin-framework-settings.php
    Line 15: include_once(ABSPATH . WPINC . '/feed.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : admin-interface.php
    Line 278: include_once( ABSPATH . WPINC . '/feed.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : admin-init.php
    Line 38: require_once ( $functions_path . 'admin-functions.php' );					// Custom fun
    Line 39: require_once ( $functions_path . 'admin-setup.php' );						// Options panel
    Line 40: require_once ( $functions_path . 'admin-custom.php' );						// Custom field
    Line 41: require_once ( $functions_path . 'admin-interface.php' );					// Admin Inte
    Line 42: require_once ( $functions_path . 'admin-framework-settings.php' );			// Fra
    Line 43: require_once ( $functions_path . 'admin-seo.php' );							// Framework SEO 
    Line 44: require_once ( $functions_path . 'admin-sbm.php' ); 						// Framework Side
    Line 45: require_once ( $functions_path . 'admin-medialibrary-uploader.php' ); 		// 
    Line 46: require_once ( $functions_path . 'admin-hooks.php' );						// Definition of
    Line 49: require_once ( $functions_path . 'admin-custom-nav.php' );				// Woo Custom
    Line 52: require_once ( $functions_path . 'admin-shortcodes.php' );					// Woo Short
    Line 56: require_once ( $functions_path . 'admin-shortcode-generator.php' ); 		// Fr
    Line 57: require_once ( $functions_path . 'admin-backup.php' ); 						// Theme Optio
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : thumb.php
    Line 25: if( file_exists(dirname(__FILE__) . '/../timthumb-config.php'))	require_once('../timthumb-config.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes