0
Validation results

Listingpro

Listingpro

WordPress 4.7.5 theme
0
Critical alerts
  1. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe src="<?php echo $resurva_url; ?> in file listing_detail2.php.
    Line 197: <iframe src='<?php echo $resurva_url; ?>' name='resurva-frame' frameborder=
  2. Malware : Operations on file system file_get_contents was found in the file envato_setup.php
    Line 813: $data = file_get_contents( $file );
    file_put_contents was found in the file envato-setup-export.php
    Line 217: file_put_contents( $dir . 'default.json' , json_encode( $default_content ) 
    Line 218: file_put_contents( $dir . 'widget_positions.json' , json_encode( $widget_po
    Line 219: file_put_contents( $dir . 'widget_options.json' , json_encode( $widget_opti
    Line 220: file_put_contents( $dir . 'menu.json' , json_encode( $menu_ids ) );
    Line 221: file_put_contents( $dir . 'options.json' , json_encode( $my_options ) );
    file_put_contents was found in the file envato-setup-export.php
    Line 217: file_put_contents( $dir . 'default.json' , json_encode( $default_content ) 
    Line 218: file_put_contents( $dir . 'widget_positions.json' , json_encode( $widget_po
    Line 219: file_put_contents( $dir . 'widget_options.json' , json_encode( $widget_opti
    Line 220: file_put_contents( $dir . 'menu.json' , json_encode( $menu_ids ) );
    Line 221: file_put_contents( $dir . 'options.json' , json_encode( $my_options ) );
    file_put_contents was found in the file envato-setup-export.php
    Line 217: file_put_contents( $dir . 'default.json' , json_encode( $default_content ) 
    Line 218: file_put_contents( $dir . 'widget_positions.json' , json_encode( $widget_po
    Line 219: file_put_contents( $dir . 'widget_options.json' , json_encode( $widget_opti
    Line 220: file_put_contents( $dir . 'menu.json' , json_encode( $menu_ids ) );
    Line 221: file_put_contents( $dir . 'options.json' , json_encode( $my_options ) );
    file_put_contents was found in the file envato-setup-export.php
    Line 217: file_put_contents( $dir . 'default.json' , json_encode( $default_content ) 
    Line 218: file_put_contents( $dir . 'widget_positions.json' , json_encode( $widget_po
    Line 219: file_put_contents( $dir . 'widget_options.json' , json_encode( $widget_opti
    Line 220: file_put_contents( $dir . 'menu.json' , json_encode( $menu_ids ) );
    Line 221: file_put_contents( $dir . 'options.json' , json_encode( $my_options ) );
    file_put_contents was found in the file envato-setup-export.php
    Line 217: file_put_contents( $dir . 'default.json' , json_encode( $default_content ) 
    Line 218: file_put_contents( $dir . 'widget_positions.json' , json_encode( $widget_po
    Line 219: file_put_contents( $dir . 'widget_options.json' , json_encode( $widget_opti
    Line 220: file_put_contents( $dir . 'menu.json' , json_encode( $menu_ids ) );
    Line 221: file_put_contents( $dir . 'options.json' , json_encode( $my_options ) );
    file_get_contents was found in the file importer-function.php
    Line 95: $data = file_get_contents( $file );
    Line 290: $data = file_get_contents( $file );
    file_get_contents was found in the file importer-function.php
    Line 95: $data = file_get_contents( $file );
    Line 290: $data = file_get_contents( $file );
    file_get_contents was found in the file parsers.php
    Line 252: if ( ! xml_parse( $xml, file_get_contents( $file ), true ) ) {
    fopen was found in the file parsers.php
    Line 398: $fp = $this->fopen( $file, 'r' );
    Line 615: function fopen( $filename, $mode = 'r' ) {
    Line 618: return fopen( $filename, $mode );
    fclose was found in the file parsers.php
    Line 447: $this->fclose($fp);
    Line 633: function fclose( $fp ) {
    Line 636: return fclose( $fp );
    fopen was found in the file parsers.php
    Line 398: $fp = $this->fopen( $file, 'r' );
    Line 615: function fopen( $filename, $mode = 'r' ) {
    Line 618: return fopen( $filename, $mode );
    fopen was found in the file parsers.php
    Line 398: $fp = $this->fopen( $file, 'r' );
    Line 615: function fopen( $filename, $mode = 'r' ) {
    Line 618: return fopen( $filename, $mode );
    fclose was found in the file parsers.php
    Line 447: $this->fclose($fp);
    Line 633: function fclose( $fp ) {
    Line 636: return fclose( $fp );
    fclose was found in the file parsers.php
    Line 447: $this->fclose($fp);
    Line 633: function fclose( $fp ) {
    Line 636: return fclose( $fp );
  3. Malware : Network operations curl_init was found in the file paypalapi.php
    Line 109: $ch = curl_init();
    Line 177: $ch = curl_init();
    Line 247: $ch = curl_init();
    curl_exec was found in the file paypalapi.php
    Line 124: $result = curl_exec($ch);
    Line 192: $result = curl_exec($ch);
    Line 263: $result = curl_exec($ch);
    curl_init was found in the file paypalapi.php
    Line 109: $ch = curl_init();
    Line 177: $ch = curl_init();
    Line 247: $ch = curl_init();
    curl_exec was found in the file paypalapi.php
    Line 124: $result = curl_exec($ch);
    Line 192: $result = curl_exec($ch);
    Line 263: $result = curl_exec($ch);
    curl_init was found in the file paypalapi.php
    Line 109: $ch = curl_init();
    Line 177: $ch = curl_init();
    Line 247: $ch = curl_init();
    curl_exec was found in the file paypalapi.php
    Line 124: $result = curl_exec($ch);
    Line 192: $result = curl_exec($ch);
    Line 263: $result = curl_exec($ch);
    curl_init was found in the file paypalapi2.php
    Line 116: $ch = curl_init();
    Line 184: $ch = curl_init();
    Line 254: $ch = curl_init();
    curl_exec was found in the file paypalapi2.php
    Line 131: $result = curl_exec($ch);
    Line 199: $result = curl_exec($ch);
    Line 270: $result = curl_exec($ch);
    curl_init was found in the file paypalapi2.php
    Line 116: $ch = curl_init();
    Line 184: $ch = curl_init();
    Line 254: $ch = curl_init();
    curl_exec was found in the file paypalapi2.php
    Line 131: $result = curl_exec($ch);
    Line 199: $result = curl_exec($ch);
    Line 270: $result = curl_exec($ch);
    curl_init was found in the file paypalapi2.php
    Line 116: $ch = curl_init();
    Line 184: $ch = curl_init();
    Line 254: $ch = curl_init();
    curl_exec was found in the file paypalapi2.php
    Line 131: $result = curl_exec($ch);
    Line 199: $result = curl_exec($ch);
    Line 270: $result = curl_exec($ch);
  4. Admin menu : Themes should use add_theme_page() for adding admin pages. File radium-importer.php :
    Line 87: //add_submenu_page('themes.php', 'One Click Demo Data Importer', 'One Click I
    File options-config.php :
    Line 100: // For a full list of options, visit: http://codex.wordpress.org/Function_Reference/add_submenu_page#Parameters
  5. Hidden admin bar : Hidden admin Bar Themes should not hide admin bar. Detected in file : functions.php.
  6. Deprecated functions : wp_get_http wp_get_http found in file wordpress-importer.php. Deprecated since version 4.4. Use WP_Http instead.
    Line 871: $headers = wp_get_http( $url, $upload['file'] );
  7. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was redux-framework.zip listingpro-reviews.zip listingpro-ads.zip listingpro-plugin.zip js_composer.zip.
Warning
  1. Text domain : Incorrect use of translation functions.Found a translation function that has an incorrect number of arguments. Function esc_html__, with the arguments 'You new password is: ', , 'listingpro' in file login-register.php.Found a translation function that is missing a text-domain. Function esc_html_e, with the arguments 'listingpro' in file single.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are listingpro, .
  2. Unwanted files : Windows thumbnail storethumbs.db was found.
  3. Hidden admin bar : Hidden admin Bar in CSSThemes should not hide admin bar. Detected in file responsive.css.
  4. I18N implementation : Proper use of ___all(Possible variable $random_password found in translation function in login-register.php. Translation function calls should not contain PHP variables.
    Line 184: $content = esc_html__('You new password is: '.$random_password.'', 'listingpro').'<br>';
    Possible variable $uname found in translation function in template-contact.php. Translation function calls should not contain PHP variables.
    Line 42: $formated_mail_content .= '<p>'.esc_html__('Name : '.$uname, 'listingpro').'</p>';
    Possible variable $uemail found in translation function in template-contact.php. Translation function calls should not contain PHP variables.
    Line 43: $formated_mail_content .= '<p>'.esc_html__('Email : '.$uemail, 'listingpro').'</p>';
    Possible variable $umessage found in translation function in template-contact.php. Translation function calls should not contain PHP variables.
    Line 44: $formated_mail_content .= '<p>'.esc_html__('Message : '.$umessage, 'listingpro').'</p>';
  5. I18N implementation : Proper use of esc_html___all(Possible variable $random_password found in translation function in login-register.php. Translation function calls should not contain PHP variables.
    Line 184: $content = esc_html__('You new password is: '.$random_password.'', 'listingpro').'<br>
    Possible variable $uname found in translation function in template-contact.php. Translation function calls should not contain PHP variables.
    Line 42: $formated_mail_content .= '<p>'.esc_html__('Name : '.$uname, 'listingpro').'</p>';
    Possible variable $uemail found in translation function in template-contact.php. Translation function calls should not contain PHP variables.
    Line 43: $formated_mail_content .= '<p>'.esc_html__('Email : '.$uemail, 'listingpro').'</p>';
    Possible variable $umessage found in translation function in template-contact.php. Translation function calls should not contain PHP variables.
    Line 44: $formated_mail_content .= '<p>'.esc_html__('Message : '.$umessage, 'listingpro').'</p>';
  6. Screenshot : Screenshot fileScreenshot dimensions are wrong! Detected: 1200x800px (3:2). Ratio of width to height should be 4:3.Screenshot size is 1200x800px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file envato_setup.php.
    Line 864: <p>Please come back and <a href='http://themeforest.net/downloads' target='_blank'>leave a 5-star rating</a>
    Line 890: <li class='rating'><a href='http://themeforest.net/downloads'
    Line 865: if you are happy with this theme. <br/>Follow <a href='https://twitter.com/cridiostudio' target='_blank'>@cridiostudio</a>
    Line 873: href='https://twitter.com/cridiostudio'
    Line 847: data-url='http://cridio.com'
    Line 884: <li class='documentation'><a href='http://cridio.com'
    Line 892: <li class='support'><a href='http://cridio.com'
    Line 864: <p>Please come back and <a href='http://themeforest.net/downloads' target='_blank'>leave a 5-star rating</a>
    Line 890: <li class='rating'><a href='http://themeforest.net/downloads'
    Line 847: data-url='http://cridio.com'
    Line 884: <li class='documentation'><a href='http://cridio.com'
    Line 892: <li class='support'><a href='http://cridio.com'
    Possible hard-coded links were found in the file options-config.php.
    Line 2775: 'default' => 'Proudly Listingpro by <a href='http://www.cridio.com/' target='_blank'>Cridio Studio</a>'
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  6. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  7. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  8. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  9. Use of includes : Use of include or requireThe theme appears to use include or require : envato_setup.php
    Line 710: require_once($class_wp_importer);
    Line 725: require_once($class_wp_import);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : init.php
    Line 6: require_once(  dirname( __FILE__ ) .'/importer/radium-importer.php' ); //lo
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : importer-function.php
    Line 42: require_once($class_wp_importer);
    Line 57: require_once($class_wp_import);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : radium-importer.php
    Line 112: include_once( ABSPATH . 'wp-admin/includes/plugin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : invoice-modal.php
    Line 4: require_once( dirname(dirname( dirname( dirname(dirname( dirname( __FILE__ 
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : form-handler.php
    Line 6: require_once( dirname(dirname( dirname( dirname( dirname( dirname( __FILE__
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : campaign-save.php
    Line 23: require_once(ABSPATH . 'wp-admin/includes/upgrade.php');
    Line 109: require_once(ABSPATH . 'wp-admin/includes/upgrade.php');
    Line 134: require_once(ABSPATH . 'wp-admin/includes/upgrade.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : form-handler2.php
    Line 6: require_once( dirname(dirname( dirname( dirname( dirname( dirname( __FILE__
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : options-config.php
    Line 859: include_once(ABSPATH.'wp-admin/includes/plugin.php');	
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : preview.php
    Line 32: require_once (THEME_PATH . '/include/aq_resizer.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : listing_detail2.php
    Line 83: require_once (THEME_PATH . '/include/aq_resizer.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.

This is a ThemeForest theme. Since Themeforest items are all checked by a human before they appear on their website, ThemeForest verification rules are more permissive than themecheck's and can give a better verification score ( Themeforest requirements ).

16
Critical alerts
  1. Malware : Network operations curl_init was found in the file paypalapi.php
    Line 109: $ch = curl_init();
    Line 177: $ch = curl_init();
    Line 247: $ch = curl_init();
    curl_exec was found in the file paypalapi.php
    Line 124: $result = curl_exec($ch);
    Line 192: $result = curl_exec($ch);
    Line 263: $result = curl_exec($ch);
    curl_init was found in the file paypalapi.php
    Line 109: $ch = curl_init();
    Line 177: $ch = curl_init();
    Line 247: $ch = curl_init();
    curl_exec was found in the file paypalapi.php
    Line 124: $result = curl_exec($ch);
    Line 192: $result = curl_exec($ch);
    Line 263: $result = curl_exec($ch);
    curl_init was found in the file paypalapi.php
    Line 109: $ch = curl_init();
    Line 177: $ch = curl_init();
    Line 247: $ch = curl_init();
    curl_exec was found in the file paypalapi.php
    Line 124: $result = curl_exec($ch);
    Line 192: $result = curl_exec($ch);
    Line 263: $result = curl_exec($ch);
    curl_init was found in the file paypalapi2.php
    Line 116: $ch = curl_init();
    Line 184: $ch = curl_init();
    Line 254: $ch = curl_init();
    curl_exec was found in the file paypalapi2.php
    Line 131: $result = curl_exec($ch);
    Line 199: $result = curl_exec($ch);
    Line 270: $result = curl_exec($ch);
    curl_init was found in the file paypalapi2.php
    Line 116: $ch = curl_init();
    Line 184: $ch = curl_init();
    Line 254: $ch = curl_init();
    curl_exec was found in the file paypalapi2.php
    Line 131: $result = curl_exec($ch);
    Line 199: $result = curl_exec($ch);
    Line 270: $result = curl_exec($ch);
    curl_init was found in the file paypalapi2.php
    Line 116: $ch = curl_init();
    Line 184: $ch = curl_init();
    Line 254: $ch = curl_init();
    curl_exec was found in the file paypalapi2.php
    Line 131: $result = curl_exec($ch);
    Line 199: $result = curl_exec($ch);
    Line 270: $result = curl_exec($ch);
  2. Hidden admin bar : Hidden admin Bar Themes should not hide admin bar. Detected in file : functions.php.
  3. Deprecated functions : wp_get_http wp_get_http found in file wordpress-importer.php. Deprecated since version 4.4. Use WP_Http instead.
    Line 871: $headers = wp_get_http( $url, $upload['file'] );
  4. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was redux-framework.zip listingpro-reviews.zip listingpro-ads.zip listingpro-plugin.zip js_composer.zip.
Warning
  1. Text domain : Incorrect use of translation functions.Found a translation function that has an incorrect number of arguments. Function esc_html__, with the arguments 'You new password is: ', , 'listingpro' in file login-register.php.Found a translation function that is missing a text-domain. Function esc_html_e, with the arguments 'listingpro' in file single.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are listingpro, .
  2. Unwanted files : Windows thumbnail storethumbs.db was found.
  3. Hidden admin bar : Hidden admin Bar in CSSThemes should not hide admin bar. Detected in file responsive.css.
  4. Screenshot : Screenshot fileScreenshot dimensions are wrong! Detected: 1200x800px (3:2). Ratio of width to height should be 4:3.Screenshot size is 1200x800px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.
Tip-off
  1. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file envato_setup.php.
    Line 864: <p>Please come back and <a href='http://themeforest.net/downloads' target='_blank'>leave a 5-star rating</a>
    Line 890: <li class='rating'><a href='http://themeforest.net/downloads'
    Line 865: if you are happy with this theme. <br/>Follow <a href='https://twitter.com/cridiostudio' target='_blank'>@cridiostudio</a>
    Line 873: href='https://twitter.com/cridiostudio'
    Line 847: data-url='http://cridio.com'
    Line 884: <li class='documentation'><a href='http://cridio.com'
    Line 892: <li class='support'><a href='http://cridio.com'
    Line 864: <p>Please come back and <a href='http://themeforest.net/downloads' target='_blank'>leave a 5-star rating</a>
    Line 890: <li class='rating'><a href='http://themeforest.net/downloads'
    Line 847: data-url='http://cridio.com'
    Line 884: <li class='documentation'><a href='http://cridio.com'
    Line 892: <li class='support'><a href='http://cridio.com'
    Possible hard-coded links were found in the file options-config.php.
    Line 2775: 'default' => 'Proudly Listingpro by <a href='http://www.cridio.com/' target='_blank'>Cridio Studio</a>'
  2. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  3. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  4. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  5. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  6. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  7. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  8. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  9. Use of includes : Use of include or requireThe theme appears to use include or require : envato_setup.php
    Line 710: require_once($class_wp_importer);
    Line 725: require_once($class_wp_import);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : init.php
    Line 6: require_once(  dirname( __FILE__ ) .'/importer/radium-importer.php' ); //lo
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : importer-function.php
    Line 42: require_once($class_wp_importer);
    Line 57: require_once($class_wp_import);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : radium-importer.php
    Line 112: include_once( ABSPATH . 'wp-admin/includes/plugin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : invoice-modal.php
    Line 4: require_once( dirname(dirname( dirname( dirname(dirname( dirname( __FILE__ 
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : form-handler.php
    Line 6: require_once( dirname(dirname( dirname( dirname( dirname( dirname( __FILE__
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : campaign-save.php
    Line 23: require_once(ABSPATH . 'wp-admin/includes/upgrade.php');
    Line 109: require_once(ABSPATH . 'wp-admin/includes/upgrade.php');
    Line 134: require_once(ABSPATH . 'wp-admin/includes/upgrade.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : form-handler2.php
    Line 6: require_once( dirname(dirname( dirname( dirname( dirname( dirname( __FILE__
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : options-config.php
    Line 859: include_once(ABSPATH.'wp-admin/includes/plugin.php');	
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : preview.php
    Line 32: require_once (THEME_PATH . '/include/aq_resizer.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : listing_detail2.php
    Line 83: require_once (THEME_PATH . '/include/aq_resizer.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes