0
Validation results

For The Cause

For The Cause

WordPress 4.7.3 theme
0
  • THEME TYPEWordPress theme 4.7.3
  • FILE NAMEforthecause.zip
  • FILE SIZE1928843 bytes
  • MD589c27e5832a7f1a64c18ce4711310c72
  • SHA1e49c34cf0aa9c1d68b5c052b58de369fcb1c2b19
  • LICENSEGNU GPL 2
  • FILES INCLUDEDCSS, PHP, Bitmap images
  • THEME URIhttp://www.woothemes.com/
  • VERSION1.1.15
  • AUTHOR URI
  • TAGSwoothemes
  • CREATION DATE2017-03-15
  • LAST FILE UPDATE2017-03-15
  • LAST VALIDATION2017-03-15 14:40
Critical alerts
  1. Title : Title No reference to add_theme_support( "title-tag" ) was found in the theme.The theme needs to have <title> tags, ideally in the header.php file.The theme needs to have a call to wp_title(), ideally in the header.php file.The <title> tags can only contain a call to wp_title(). Use the wp_title filter to modify the output.
  2. Security breaches : Use of base64_decode() Found base64_decode in file admin-functions.php.
    Line 1025: $cred = unserialize(base64_decode($_POST['woo_ftp_cred']));
    Line 1103: $cred = unserialize( base64_decode( $_POST['woo_ftp_cred'] ) );
  3. Security breaches : Use of base64_encode() Found base64_encode in file admin-functions.php.
     <input type='hidden' name='woo_ftp_cred' value='<?php echo esc_attr( base64_encode(serialize($_POST))); ?>' />
  4. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe src="' . esc_url( $src_url ) . '" frameborder="0" allowTransparency="true" style="border:none; overflow:hidden; width:' . esc_attr( $widthpx ) . '; height:' . esc_attr( $height ) . 'px;"> in file admin-shortcodes.php.
    Line 644: <iframe src='' . esc_url( $src_url ) . '' frameborder='0' allowTransparency
  5. Malware : Operations on file system file_get_contents was found in the file class-wf-backup.php
    Line 189: $upload = file_get_contents( $_FILES['woothemes-import-file']['tmp_name'] );
  6. Admin menu : Themes should use add_theme_page() for adding admin pages. File class-wf-settings.php :
    Line 91: add_menu_page( __( 'Settings', 'woothemes' ),  esc_html( $theme_name ), 'ed
    File class-wf-settings.php :
    Line 92: $wf_settings_screen_hook = add_submenu_page( 'woothemes', esc_html( $theme_name ), __( 'Settings', 'wo
    File class-wf-backup.php :
    Line 53: $this->_admin_page = add_submenu_page( 'woothemes', __( 'WooThemes Settings Backup', 'woothemes'
    File class-wf-screen-welcome.php :
    Line 37: $about = add_submenu_page( 'woothemes', $this->_theme_data['theme_name'], $this->_th
    File class-wf-screen-framework.php :
    Line 43: $framework = add_submenu_page( 'woothemes', __( 'Framework', 'woothemes' ), __( 'Framewo
    File admin-interface.php :
    Line 168: $framework_update_page = add_submenu_page( 'woothemes', 'WooFramework Update', 'Update Framework', '
    File admin-functions.php :
    Line 3553: $timthumb_retire_page = add_submenu_page( 'woothemes', 'Remove Timthumb', 'Remove Timthumb', 'manag
Warning
  1. special URIs : Presence of bad theme tagsTheme URI and Author URI should not be the same.
  2. theme tags : Presence of bad theme tagsFound wrong tag woothemes in style.css header.
  3. Text domain : Incorrect use of translation functions.Wrong installation directory for the theme name. The directory name must match the slug of the theme. This theme's correct slug and text-domain is for-the-cause.
  4. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function __, with the arguments 'Display the product details in a full-width single column format? (The sidebar is removed).' in file theme-options.php.Found a translation function that has an incorrect number of arguments. Function __, with the arguments 'Subscribe By E-mail to MailChimp', woothemes, 'woothemes' in file theme-options.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments 'contact-name' in file widget-woo-contact.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments 'contact-email' in file widget-woo-contact.php.Found a translation function that is missing a text-domain. Function esc_attr_e, with the arguments 'contact-message' in file widget-woo-contact.php.Found a translation function that is missing a text-domain. Function _e, with the arguments 'fivehundred' in file theme-ignition_deck.php.Found a translation function that is missing a text-domain. Function _e, with the arguments 'fivehundred' in file theme-ignition_deck.php.Found a translation function that is missing a text-domain. Function _e, with the arguments 'fivehundred' in file theme-ignition_deck.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Contact form message via %s.' in file theme-actions.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Name' in file theme-functions.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Email' in file theme-functions.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Website' in file theme-functions.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'http://codex.wordpress.org/Child_Themes' in file class-wf-screen-welcome.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Cheatin&#8217; huh?' in file class-wf.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Cheatin&#8217; huh?' in file class-wf.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'woothemes' in file template-contact.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are woothemes, fivehundred.
  5. Plugin territory : Plugin territory functionalitiesThe theme uses the register_post_type() function, which is plugin-territory functionality.The theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  6. Unwanted files : hidden file(s) or folder(s).ds_store was found.
  7. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  8. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  9. I18N implementation : Proper use of _e(Possible variable $_GET found in translation function in widget-woo-contact.php. Translation function calls should not contain PHP variables.
    Line 46: <input type='text' name='contact-name' value='<?php if ( isset( $_GET['contact-name'] ) ) { esc_attr_e( $_GET['contact-name'] ); } ?>' />
    Possible variable $_GET found in translation function in widget-woo-contact.php. Translation function calls should not contain PHP variables.
    Line 50: <input type='text' name='contact-email' value='<?php if ( isset( $_GET['contact-email'] ) ) { esc_attr_e( $_GET['contact-email'] ); } ?>' />
    Possible variable $_GET found in translation function in widget-woo-contact.php. Translation function calls should not contain PHP variables.
    Line 58: <textarea name='contact-message'><?php if ( isset( $_GET['contact-message'] ) ) { esc_attr_e( $_GET['contact-message'] ); } ?></textarea>
    Possible variable $hDeck found in translation function in theme-ignition_deck.php. Translation function calls should not contain PHP variables.
    Line 275: <?php _e('Projects Ends', 'fivehundred'); ?>: <?php _e($hDeck->day, 'fivehundred'); ?> <?php _e($hDeck->month, 'fivehundred'); 
    Possible variable $hDeck found in translation function in theme-ignition_deck.php. Translation function calls should not contain PHP variables.
    Line 275: <?php _e('Projects Ends', 'fivehundred'); ?>: <?php _e($hDeck->day, 'fivehundred'); ?> <?php _e($hDeck->month, 'fivehundred'); ?> <?php _e($hDeck->year, 'fivehundred');
    Possible variable $hDeck found in translation function in theme-ignition_deck.php. Translation function calls should not contain PHP variables.
    Line 275: <?php _e('Projects Ends', 'fivehundred'); ?>: <?php _e($hDeck->day, 'fivehundred'); ?> <?php _e($hDeck->month, 'fivehundred'); ?> <?php _e($hDeck->year, 'fivehundred'); ?>
  10. I18N implementation : Proper use of ___all(Possible variable $name found in translation function in template-contact.php. Translation function calls should not contain PHP variables.
    Line 70: $body = __( 'Name: $name \n\nEmail: $email \n\nComments: $comments', 'woothemes' );
  11. I18N implementation : Proper use of esc_attr_e(Possible variable $_GET found in translation function in widget-woo-contact.php. Translation function calls should not contain PHP variables.
    Line 46: <input type='text' name='contact-name' value='<?php if ( isset( $_GET['contact-name'] ) ) { esc_attr_e( $_GET['contact-name'] ); } ?>' />
    Possible variable $_GET found in translation function in widget-woo-contact.php. Translation function calls should not contain PHP variables.
    Line 50: <input type='text' name='contact-email' value='<?php if ( isset( $_GET['contact-email'] ) ) { esc_attr_e( $_GET['contact-email'] ); } ?>' />
    Possible variable $_GET found in translation function in widget-woo-contact.php. Translation function calls should not contain PHP variables.
    Line 58: <textarea name='contact-message'><?php if ( isset( $_GET['contact-message'] ) ) { esc_attr_e( $_GET['contact-message'] ); } ?></textarea>
  12. CSS files : Presence of text domainText Domain: is missing from your style.css header.
  13. CSS files : Presence of .sticky class.sticky css class is needed in theme css.
  14. CSS files : Presence of .bypostauthor class.bypostauthor css class is needed in theme css.
  15. CSS files : Presence of .gallery-caption class.gallery-caption css class is needed in theme css.
  16. CSS files : Presence of .screen-reader-text class.screen-reader-text css class is needed in your theme css. See : the Codex for an example implementation.
  17. Screenshot : Screenshot fileScreenshot size is 600x450px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file theme-options.php.
    Line 158: 'desc' => sprintf( __( 'Upload a 16px x 16px %1$s that will represent your website\'s favicon.', 'woothemes' ), '<a href='http://www.faviconr.com/'>'.__( 'ico image', 'woothemes' ).'</a>' ),
    Line 388: 'desc' => sprintf( __( 'Display a slider above the page content? Requires %sWooSlider%s plugin.', 'woothemes' ), '<a href='http://www.woothemes.com/products/wooslider/' title='' . __( 'Purchase WooS
    Line 698: 'desc' => sprintf( __( 'Exclude one or more categories from displaying on this module. Enter a comma separated list of %sCategory ids%s.', 'woothemes' ), '<a href='http://www.woothemes.com/2009/01/how-to-find-pagecat-id/'>', '</a>' ),
    Line 704: 'desc' => sprintf( __( 'Display a specific list of categories. Enter a comma separated list of %sCategory ids%s.', 'woothemes' ), '<a href='http://www.woothemes.com/2009/01/how-to-find-pagecat-id/'>', '</a>' ),
    Line 698: 'desc' => sprintf( __( 'Exclude one or more categories from displaying on this module. Enter a comma separated list of %sCategory ids%s.', 'woothemes' ), '<a href='http://www.woothemes.com/2009/01/how-to-find-pagecat-id/'>', '</a>' ),
    Line 704: 'desc' => sprintf( __( 'Display a specific list of categories. Enter a comma separated list of %sCategory ids%s.', 'woothemes' ), '<a href='http://www.woothemes.com/2009/01/how-to-find-pagecat-id/'>', '</a>' ),
    Line 986: 'desc' => __( 'This will enable the <a href='http://code.google.com/p/timthumb/'>TimThumb</a> (thumb.php) script which d
    Line 1102: 'desc' => sprintf( __( 'Enter your %1$s for the e-mail subscription form.', 'woothemes' ), '<a href='http://www.woothemes.com/tutorials/how-to-find-your-feedburner-id-for-email
    Line 1108: 'desc' => sprintf( __( 'If you have a MailChimp account you can enter the %1$s to allow your users to subscribe to a MailChimp List.', 'woothemes' ), '<a href='http://woochimp.heroku.com' target='_blank'>'.__( 'MailChimp List Subscribe
    Line 1123: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://www.twitter.com/woothemes', 'woothemes' ), '<a href='http://www.twit
    Line 1129: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://www.facebook.com/woothemes', 'woothemes' ), '<a href='http://www.fac
    Line 1135: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://www.youtube.com/woothemes', 'woothemes' ), '<a href='http://www.yout
    Line 1141: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://www.flickr.com/woothemes', 'woothemes' ), '<a href='http://www.flick
    Line 1147: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://www.linkedin.com/in/woothemes', 'woothemes' ), '<a href='http://www.www.linkedin.com.com/'>'.__( 'LinkedIn', 'woothemes' ).'</a>' ),
    Line 1153: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://www.delicious.com/woothemes', 'woothemes' ), '<a href='http://www.de
    Line 1159: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. https://plus.google.com/104560124403688998123/', 'woothemes' ), '<a href='http://plus.google.com/'>'.__( 'Google+', 'woothemes' ).'</a>' ),
    Line 1165: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://dribbble.com/woothemes', 'woothemes' ), '<a href='http://dribbble.co
    Line 1171: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://instagram.com/woothemes', 'woothemes' ), '<a href='http://instagram.
    Line 1177: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://vimeo.com/woothemes', 'woothemes' ), '<a href='http://vimeo.com/'>'.
    Line 1183: 'desc' => sprintf( __( 'Enter your %1$s URL e.g. http://pinterest.com/woothemes', 'woothemes' ), '<a href='http://pinterest.
    Line 1248: 'desc' => sprintf( __( 'Enter your Google Map coordinates to display a map on the Contact Form page template and a link to it on the Contact Us widget. You can get these details from %1$s', 'woothemes' ), '<a href='http://itouchmap.com/latlong.html' target='_blank'>Google Maps</a>' ),
    Possible hard-coded links were found in the file widget-woo-flickr.php.
    Line 79: <label for='<?php echo $this->get_field_id( 'id' ); ?>'><?php _e( 'Flickr ID (<a href='http://www.idgettr.com'>idGettr</a>):', 'woothemes' ); ?></label>
    Possible hard-coded links were found in the file widget-woo-blogauthor.php.
    Line 85: <label for='<?php echo $this->get_field_id('custom_email'); ?>'><?php _e('<a href='http://www.gravatar.com/'>Gravatar</a> E-mail:','woothemes'); ?></label>
    Possible hard-coded links were found in the file admin-shortcode-generator.php.
    Line 266: <p><?php echo __( 'Pick a fight: (1) If you already have a theme from WooThemes, install and activate it or (2) if you don\'t yet have one of the awesome WooThemes head over to the <a href='http://www.woothemes.com/themes/' target='_blank' title='WooThemes Gallery'
    Possible hard-coded links were found in the file admin-interface.php.
    Line 264: $html = '<div id='wooframework_update' class='updated fade'><p>' . sprintf( __( 'WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
    Line 309: $html = '<div id='wooframework_important_update' class='error fade'><p>' . sprintf( __( 'An important WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
    Line 264: $html = '<div id='wooframework_update' class='updated fade'><p>' . sprintf( __( 'WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
    Line 309: $html = '<div id='wooframework_important_update' class='error fade'><p>' . sprintf( __( 'An important WooFramework update is available (v%s). %sDownload new version%s (%sSee Changelog%s)', 'woothemes' ), $update_data['version'], '<a href='' . admin_url( 'admin.php?page=woothemes_framework_update' ) . ''>', '</a>', '<a href='http://www.woothemes.com/updates/functions-changelog.txt' target='_blank' t
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  6. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  7. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  8. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  9. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  10. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  11. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  12. Use of includes : Use of include or requireThe theme appears to use include or require : theme-plugin-integrations.php
    Line 16: require_once( get_template_directory() . '/includes/integrations/projects/s
    Line 17: require_once( get_template_directory() . '/includes/integrations/projects/t
    Line 18: require_once( get_template_directory() . '/includes/integrations/projects/f
    Line 26: require_once( get_template_directory() . '/includes/integrations/our-team/o
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : admin-init.php
    Line 42: require_once( $functions_path . 'deprecated.php' );                        
    Line 43: require_once( $functions_path . 'admin-medialibrary-uploader.php' );       
    Line 46: require_once( $classes_path . 'class-wf.php' );                            
    Line 47: require_once( $classes_path . 'class-wf-fields.php' );                     
    Line 48: require_once( $classes_path . 'class-wf-fields-settings.php' );            
    Line 49: require_once( $classes_path . 'class-wf-fields-meta.php' );                
    Line 50: require_once( $classes_path . 'class-wf-settings.php' );                   
    Line 51: require_once( $classes_path . 'class-wf-meta.php' );                       
    Line 67: require_once( $functions_path . 'admin-functions.php' );					// Functions u
    Line 68: require_once( $functions_path . 'admin-setup.php' );						// Set up the Woo
    Line 69: require_once( $functions_path . 'admin-interface.php' );					// Administrat
    Line 70: require_once( $functions_path . 'admin-seo.php' );							// SEO functions.
    Line 71: require_once( $functions_path . 'admin-sbm.php' ); 						    // Widget Area
    Line 72: require_once( $functions_path . 'admin-hooks.php' );						// Contextual hoo
    Line 75: require_once( $functions_path . 'admin-custom-nav.php' );				// Woo Custom 
    Line 78: require_once ( $functions_path . 'admin-shortcodes.php' );					// Woo Short
    Line 82: require_once( $classes_path . 'class-wf-screen-admin-base.php' );       // 
    Line 83: require_once( $classes_path . 'class-wf-screen.php' );                  // 
    Line 84: require_once( $classes_path . 'class-wf-screen-welcome.php' );          // 
    Line 85: require_once( $classes_path . 'class-wf-screen-framework.php' );        // 
    Line 87: require_once( $classes_path . 'class-wf-backup.php' );                  // 
    Line 88: require_once( $functions_path . 'admin-backup.php' );                   // 
    Line 89: require_once( $functions_path . 'admin-shortcode-generator.php' ); 	    // 
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes