0
Validation results

Schema by MyThemeShop

Schema by MyThemeShop

WordPress 4.9.4 theme
0
Critical alerts
  1. Security breaches : Modification of PHP server settings Found ini_set in file radium-importer.php.
    Line 750: ini_set('max_execution_time', -1);
    Line 752: ini_set('max_execution_time', $max_execution_time);
    Found ini_set in file wordpress-importer.php.
    Line 106: ini_set('max_execution_time', -1);
    Line 132: ini_set('max_execution_time', $max_execution_time);
  2. Security breaches : Use of base64_decode() Found base64_decode in file twitteroauth.php.
    Line 145: $decoded_sig = base64_decode($signature); // base64_encode() required by Twitter!
  3. Security breaches : Use of base64_encode() Found base64_encode in file twitteroauth.php.
     return base64_encode(hash_hmac('sha1', $base_string, $key, true)); // base64_encod
     return base64_encode($signature); // base64_encode() required by Twitter!
     $decoded_sig = base64_decode($signature); // base64_encode() required by Twitter!
  4. Unwanted files : hidden file(s) or folder(s) .keep was found.
  5. Malware : Operations on file system file_get_contents was found in the file parsers.php
    Line 68: $contents = file_get_contents( $file );
    Line 275: if ( ! xml_parse( $xml, file_get_contents( $file ), true ) ) {
    file_get_contents was found in the file parsers.php
    Line 68: $contents = file_get_contents( $file );
    Line 275: if ( ! xml_parse( $xml, file_get_contents( $file ), true ) ) {
    fopen was found in the file parsers.php
    Line 421: $fp = $this->fopen( $file, 'r' );
    Line 647: function fopen( $filename, $mode = 'r' ) {
    Line 650: return fopen( $filename, $mode );
    fclose was found in the file parsers.php
    Line 470: $this->fclose($fp);
    Line 665: function fclose( $fp ) {
    Line 668: return fclose( $fp );
    fopen was found in the file parsers.php
    Line 421: $fp = $this->fopen( $file, 'r' );
    Line 647: function fopen( $filename, $mode = 'r' ) {
    Line 650: return fopen( $filename, $mode );
    fopen was found in the file parsers.php
    Line 421: $fp = $this->fopen( $file, 'r' );
    Line 647: function fopen( $filename, $mode = 'r' ) {
    Line 650: return fopen( $filename, $mode );
    fclose was found in the file parsers.php
    Line 470: $this->fclose($fp);
    Line 665: function fclose( $fp ) {
    Line 668: return fclose( $fp );
    fclose was found in the file parsers.php
    Line 470: $this->fclose($fp);
    Line 665: function fclose( $fp ) {
    Line 668: return fclose( $fp );
    file_get_contents was found in the file radium-importer.php
    Line 296: $data = file_get_contents( $file );
    Line 417: $data = file_get_contents( $file );
    file_get_contents was found in the file radium-importer.php
    Line 296: $data = file_get_contents( $file );
    Line 417: $data = file_get_contents( $file );
    file_get_contents was found in the file plugin-activation.php
    Line 2417: $plugin = @json_decode( @file_get_contents( 'https://api.wordpress.org/plugins/info/1.0/' . $item['s
    file_get_contents was found in the file twitteroauth.php
    Line 205: //file_get_contents(self::$POST_INPUT)
  6. Malware : Network operations curl_init was found in the file twitteroauth.php
    Line 1012: $ci = curl_init();
    curl_exec was found in the file twitteroauth.php
    Line 1038: $response = curl_exec($ci);
  7. Admin menu : Themes should use add_theme_page() for adding admin pages. File theme-options.php :
    Line 123: //the list of available parent menus is available here: http://codex.wordpress.org/Function_Reference/add_submenu_page#Parameters
    File plugin-activation.php :
    Line 646: $this->page_hook = call_user_func( 'add_{$type}_page', $args['parent_slug'], $args['page_title'], $args['menu_t
    File plugin-activation.php :
    Line 3995: add_menu_page(
  8. Deprecated functions : get_option get_option( 'home' ) was found in the file support.php. Use home_url() instead.
    Line 208: 'home_url'                  => get_option( 'home' ),
Warning
  1. theme tags : Presence of bad theme tagsFound wrong tag in style.css header.
  2. Text domain : Incorrect use of translation functions.Wrong installation directory for the theme name. The directory name must match the slug of the theme. This theme's correct slug and text-domain is schema-by-mythemeshop.
  3. Text domain : Incorrect use of translation functions.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are schema, mythemeshop, viral, MTSTHEMENAME.
  4. Hidden admin bar : Hidden admin Bar in CSSThemes should not hide admin bar. Detected in file responsive.css.
  5. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  6. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
  7. Editor style : Presence of editor styleNo reference to add_editor_style() was found in the theme. It is recommended that the theme implements editor styling, so as to make the editor content match the resulting post output in the theme, for a better user experience.
  8. CSS files : Presence of license urlLicense URI: is missing from style.css header.
  9. Screenshot : Screenshot fileScreenshot size is 880x660px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.
Tip-off
  1. favicon presence : Favicon managementPossible Favicon found in theme-actions.php. Favicons are handled by the Site Icon setting in the customizer since version 4.3.
  2. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file theme-options.php.
    Line 137: 'content' => '<p>' . sprintf( __('If you are facing any problem with our theme or theme option panel, head over to our %s.', 'schema' ), '<a href='http://community.mythemeshop.com/'>'. __( 'Support Forums', 'schema' ) . '<
    Line 142: 'content' => '<p>' . sprintf( __('Earn 70%% commision on every sale by refering your friends and readers. Join our %s.', 'schema' ), '<a href='http://mythemeshop.com/affiliate-program/'>' . __( 'Affiliate Program', 'sc
    Line 409: '<a href='https://community.mythemeshop.com/tutorials/article/8-make-your-website-loa
    Line 805: 'sub_desc' => __( 'You can change or remove our link from footer and use your own custom text.', 'schema' ) . ( MTS_THEME_WHITE_LABEL ? '' : wp_kses( __('(You can also use your affiliate link to <strong>earn 70% of sales</strong>. Ex: <a href='https://mythemeshop.com/go/aff/aff' target='_blank'>https://mythemeshop.com
    Line 142: 'content' => '<p>' . sprintf( __('Earn 70%% commision on every sale by refering your friends and readers. Join our %s.', 'schema' ), '<a href='http://mythemeshop.com/affiliate-program/'>' . __( 'Affiliate Program', 'sc
    Line 806: 'std' => MTS_THEME_WHITE_LABEL ? null : sprintf( __( 'Theme by %s', 'schema' ), '<a href='http://mythemeshop.com/' rel='nofollow'>MyThemeShop</a>' )
    Line 1173: //				'desc' => __('<p class='description'><div class='controls'>You can find theme font options under the Appearance Section named <a href='themes.php?page=typography'><b>Theme Typography</b></a>, which will allow y
    Line 1178: 'desc' => '<p class='description'><div class='controls'>' . sprintf( __('Navigation settings can now be modified from the %s.', 'schema' ), '<a href='nav-menus.php'><b>' . __( 'Menus Section', 'schema' ) . '</b></a>' ) . '<br
    Possible hard-coded links were found in the file options.php.
    Line 712: echo '<a href='http://mythemeshop.com' id='optionpanellogo' class='logo' target='_blank'><
    Line 716: echo '<a href='https://community.mythemeshop.com/forum/7-theme-support/' class='docsupport
    Possible hard-coded links were found in the file support.php.
    Line 50: sprintf( __( 'We offer technical support through our %s. Please <strong>copy and paste the following information in your ticket</strong> when contacting support:' , 'schema' ), '<a href='https://community.mythemeshop.com/forum/7-theme-support/' target='_blank'>'
    Line 82: <a href='https://community.mythemeshop.com/forum/7-theme-support/' target='_blank' c
    Possible hard-coded links were found in the file google-typography.php.
    Line 142: //$adding_content			 .= '<p><a href='https://vimeo.com/67957799' target='_blank'>'.__('Watch The Video Tutorial 
    Line 311: $welcome_subtitle			= __('Get started in 3 steps.', 'schema' );//.'<a href='https://vimeo.com/67957799' target='_blank'>'.__('Watch the video tutorial 
    Line 142: //$adding_content			 .= '<p><a href='https://vimeo.com/67957799' target='_blank'>'.__('Watch The Video Tutorial 
    Line 311: $welcome_subtitle			= __('Get started in 3 steps.', 'schema' );//.'<a href='https://vimeo.com/67957799' target='_blank'>'.__('Watch the video tutorial 
    Line 381: <a href='http://www.google.com/fonts' target='_blank'>Google Fonts Library</a> conta
    Possible hard-coded links were found in the file welcome-message.php.
    Line 26: $pointer_content .= '<p>'.__('If you face any problem, head over to', 'schema' ).' <a href='http://community.mythemeshop.com/'>'.__('Support Forums', 'schema' ).'</a><
    Possible hard-coded links were found in the file plugin-activation.php.
    Line 3770: 'source'    => 'https://mythemeshop.com/mythemeshop-connect.zip',
    Line 3780: 'info_link' => 'https://mythemeshop.com/plugins/wp-tab-widget-pro/',
    Line 3791: 'info_link' => 'https://mythemeshop.com/plugins/wp-review-pro/',
    Line 3802: 'info_link' => 'https://mythemeshop.com/plugins/wp-subscribe-pro/',
    Line 3813: 'info_link' => 'https://mythemeshop.com/plugins/wp-quiz-pro/',
    Line 3824: 'info_link' => 'https://mythemeshop.com/plugins/wp-notification-bar/',
    Line 3833: 'info_link' => 'https://mythemeshop.com/plugins/wp-mega-menu/',
    Line 3852: 'info_link' => 'https://mythemeshop.com/plugins/wp-quiz-pro/',
    Line 3863: 'info_link' => 'https://mythemeshop.com/plugins/my-wp-backup-pro/',
    Line 4258: $author   = isset( $plugin['author'] ) ? $plugin['author'] : '<a href='https://mythemeshop.com'>MyThemeShop</a>';
    Line 4283: $author   = isset( $info['author'] ) ? $info['author'] : '<a href='https://mythemeshop.com'>MyThemeShop</a>';
    Line 4436: $res->download_link = 'https://mythemeshop.com/mythemeshop-connect.zip';
    Line 4452: $data->response[ 'mythemeshop-connect/mythemeshop-connect.php' ]->package = 'https://mythemeshop.com/mythemeshop-connect.zip';
    Line 3770: 'source'    => 'https://mythemeshop.com/mythemeshop-connect.zip',
    Line 3780: 'info_link' => 'https://mythemeshop.com/plugins/wp-tab-widget-pro/',
    Line 3791: 'info_link' => 'https://mythemeshop.com/plugins/wp-review-pro/',
    Line 3802: 'info_link' => 'https://mythemeshop.com/plugins/wp-subscribe-pro/',
    Line 3813: 'info_link' => 'https://mythemeshop.com/plugins/wp-quiz-pro/',
    Line 3824: 'info_link' => 'https://mythemeshop.com/plugins/wp-notification-bar/',
    Line 3833: 'info_link' => 'https://mythemeshop.com/plugins/wp-mega-menu/',
    Line 3852: 'info_link' => 'https://mythemeshop.com/plugins/wp-quiz-pro/',
    Line 3863: 'info_link' => 'https://mythemeshop.com/plugins/my-wp-backup-pro/',
    Line 4258: $author   = isset( $plugin['author'] ) ? $plugin['author'] : '<a href='https://mythemeshop.com'>MyThemeShop</a>';
    Line 4283: $author   = isset( $info['author'] ) ? $info['author'] : '<a href='https://mythemeshop.com'>MyThemeShop</a>';
    Line 4436: $res->download_link = 'https://mythemeshop.com/mythemeshop-connect.zip';
    Line 4452: $data->response[ 'mythemeshop-connect/mythemeshop-connect.php' ]->package = 'https://mythemeshop.com/mythemeshop-connect.zip';
    Possible hard-coded links were found in the file theme-actions.php.
    Line 461: <a href='https://twitter.com/share' class='twitter-share-button' data-via='<?php ech
    Possible hard-coded links were found in the file widget-tweets.php.
    Line 38: echo '<strong>'.$tweets->errors[0]->message.'!</strong><br />'. esc_html( 'You\'ll need to regenerate it <a href='https://dev.twitter.com/apps' target='_blank'>here</a>!', 'schema' ) . $aft
    Line 91: echo '</select></p><p>Visit <a href='https://dev.twitter.com/apps/' target='_blank'>this link</a> in a new tab, 
    Line 91: echo '</select></p><p>Visit <a href='https://dev.twitter.com/apps/' target='_blank'>this link</a> in a new tab, 
  3. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  4. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  5. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  6. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  7. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  8. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  9. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  10. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  11. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  12. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  13. Use of includes : Use of include or requireThe theme appears to use include or require : theme-options.php
    Line 10: require_once( dirname( __FILE__ ) . '/options/options.php' );
    Line 18: require_once( dirname( __FILE__ ) . '/options/support.php' );
    Line 1186: include('theme-presets.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : init.php
    Line 14: require_once( dirname( __FILE__ ) . '/importer/radium-importer.php' ); //lo
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : radium-importer.php
    Line 239: require_once($class_wp_importer);
    Line 252: require_once($class_wp_import);
    Line 724: require_once($class_wp_importer);
    Line 737: require_once($class_wp_import);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : options.php
    Line 10: require_once('google-typography/google-typography.php');
    Line 376: require_once($this->dir.'fields/'.$field['type'].'/field_'.$field['type'].'
    Line 645: require_once($this->dir.'validation/'.$field['validate'].'/validation_'.$fi
    Line 1140: require_once($this->dir.'fields/'.$field['type'].'/field_'.$field['type'].'
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : support.php
    Line 235: require_once( ABSPATH . 'wp-admin/includes/plugin.php' );
    Line 256: include_once( ABSPATH . 'wp-admin/includes/plugin-install.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : field_background.php
    Line 266: require_once($class_file);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : field_layout2.php
    Line 165: require_once($class_file);
    Line 221: require_once($class_file);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : field_group.php
    Line 260: require_once($class_file);
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : plugin-activation.php
    Line 4127: include( ABSPATH . 'wp-admin/includes/plugin-install.php' );
    Line 4333: include( ABSPATH . 'wp-admin/includes/plugin-install.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : widget-tweets.php
    Line 29: //require_once('twitteroauth.php');
    Line 31: if(!require_once('twitteroauth.php')){ echo '<strong>Couldn\'t find twitteroaut
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes