0
Validation results

Smarty WP Theme

Smarty WP Theme

WordPress 4.9.1 theme
0
    Error 8 : Undefined index: slug
    In /home/www/themecheck/themecheck/controllers/controller_results.php line 772
  • THEME TYPEWordPress theme 4.9.1
  • FILE NAMEthemeforest-7626270-smarty-portfolio-shop-wordpress-theme.zip
  • FILE SIZE35850151 bytes
  • MD558643d5f118e7b13c55ccb53e8058ef3
  • SHA1c401c989ea7d0403e027243401030ba3e4857cbd
  • LICENSEGNU GPL 2
  • FILES INCLUDEDCSS, PHP, HTML, XML, Bitmap images, Adobe Photoshop, Adobe Illustrator
  • THEME URIhttp://okthemes.com/smarty
  • VERSION1.5
  • AUTHOR URI
  • CREATION DATE2016-05-12
  • LAST FILE UPDATE2017-03-06
  • LAST VALIDATION2017-03-06 07:02
  • OTHER VERSIONS

    2.7 : 35%

Critical alerts
  1. Customizer : Sanitization of Customizer settings Found a Customizer setting that did not have a sanitization callback function in file options.php. Every call to the add_setting() method needs to have a sanitization callback function passed.
  2. Title : Title No reference to add_theme_support( "title-tag" ) was found in the theme.The theme needs to have <title> tags, ideally in the header.php file.The theme needs to have a call to wp_title(), ideally in the header.php file.
  3. Security breaches : Use of base64_decode() Found base64_decode in file OAuth.php.
    Ligne202: $decoded_sig = base64_decode($signature);
    Found base64_decode in file gg-widget-newsletter.php.
    Ligne16: $text =  rawurldecode(base64_decode(strip_tags($text)));
    Found base64_decode in file import-export.php.
    Ligne859: $import_widget_positions = unserialize(base64_decode($_REQUEST['widget_positions']));
    Ligne860: $import_widget_options = unserialize(base64_decode($_REQUEST['widget_options']));
  4. Security breaches : Use of base64_encode() Found base64_encode in file OAuth.php.
     return base64_encode(hash_hmac('sha1', $base_string, $key, true));
     return base64_encode($signature);
    Found base64_encode in file import-export.php.
     $a = base64_encode(serialize($widget_positions));
     $b = base64_encode(serialize($widget_options));
  5. Malware : Operations on file system file_get_contents was found in the file OAuth.php
    Ligne272: file_get_contents(self::$POST_INPUT)
    file_get_contents was found in the file import-export.php
    Ligne31: $encode_options = file_get_contents( $_FILES['import']['tmp_name'] );
  6. Malware : Network operations curl_init was found in the file twitteroauth.php
    Ligne195: $ci = curl_init();
    curl_exec was found in the file twitteroauth.php
    Ligne221: $response = curl_exec($ci);
  7. Deprecated functions : screen_icon screen_icon found in file class-tgm-plugin-activation.php. Deprecated since version 3.8.
    Ligne391: screen_icon( apply_filters( 'tgmpa_default_screen_icon', 'themes' ) );
    Ligne1585: screen_icon( apply_filters( 'tgmpa_default_screen_icon', 'themes' ) );
  8. Included plugins : Zip file found Plugins are not allowed in themes. The zip file found was smarty.zip home_slider.zip shop slider.zip socialbox.zip revslider.zip js_composer.zip.
Warning
  1. core scripts deregistered : Core scripts deregistrationFound wp_deregister_script in functions.php. Themes must not deregister core scripts.
    Ligne184: wp_deregister_script('mediaelement');
    Found wp_deregister_script in load-vc-modules.php. Themes must not deregister core scripts.
    Ligne62: wp_deregister_script( 'prettyphoto' );
    Ligne63: wp_deregister_script( 'nivo-slider' );
    Ligne64: wp_deregister_script( 'flexslider' );
    Ligne65: wp_deregister_script( 'prettyphoto' );
  2. theme tags : Presence of bad theme tagsFound wrong tag in style.css header.
  3. Text domain : Incorrect use of translation functions.Wrong installation directory for the theme name. The directory name must match the slug of the theme. This theme's correct slug and text-domain is smarty-wp-theme.
  4. Text domain : Incorrect use of translation functions.Found a translation function that is missing a text-domain. Function _e, with the arguments 'Flickr ID (To find your flickID visit <a href="http://idgettr.com/" target="_blank">idGettr</a>)' in file flickr-widget.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Install Required Plugins' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Install Plugins' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Installing Plugin: %s' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Something went wrong with the plugin API.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'This theme requires the following plugin: %1$s.', 'This theme requires the following plugins: %1$s.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'This theme recommends the following plugin: %1$s.', 'This theme recommends the following plugins: %1$s.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Sorry, but you do not have the correct permissions to install the %s plugin. Contact the administrator of this site for help on getting the plugin installed.', 'Sorry, but you do not have the correct permissions to install the %s plugins. Contact the administrator of this site for help on getting the plugins installed.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'The following required plugin is currently inactive: %1$s.', 'The following required plugins are currently inactive: %1$s.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'The following recommended plugin is currently inactive: %1$s.', 'The following recommended plugins are currently inactive: %1$s.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Sorry, but you do not have the correct permissions to activate the %s plugin. Contact the administrator of this site for help on getting the plugin activated.', 'Sorry, but you do not have the correct permissions to activate the %s plugins. Contact the administrator of this site for help on getting the plugins activated.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'The following plugin needs to be updated to its latest version to ensure maximum compatibility with this theme: %1$s.', 'The following plugins need to be updated to their latest version to ensure maximum compatibility with this theme: %1$s.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Sorry, but you do not have the correct permissions to update the %s plugin. Contact the administrator of this site for help on getting the plugin updated.', 'Sorry, but you do not have the correct permissions to update the %s plugins. Contact the administrator of this site for help on getting the plugins updated.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Begin installing plugin', 'Begin installing plugins' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n_noop, with the arguments 'Activate installed plugin', 'Activate installed plugins' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Return to Required Plugins Installer' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'Plugin activated successfully.' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function __, with the arguments 'All plugins installed and activated successfully. %s' in file register-tgm-plugins.php.Found a translation function that is missing a text-domain. Function _n, with the arguments 'Portfolio Item', 'Portfolio Items' in file portfolio_cpt.php.Found a translation function that is missing a text-domain. Function _n, with the arguments 'Portfolio Item Pending', 'Portfolio Items Pending' in file portfolio_cpt.php.Found a translation function that has an incorrect number of arguments. Function __, with the arguments "Insert the number of products to show. Default: 4", okthemes, "okthemes" in file gg-woocommerce.php.Found a translation function that has an incorrect number of arguments. Function __, with the arguments "Insert the number columns to show. Default: 4", okthemes, "okthemes" in file gg-woocommerce.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are okthemes, tgmpa, js_composer, wpb, rwmb.
  5. Plugin territory : Plugin territory functionalitiesThe theme uses the register_post_type() function, which is plugin-territory functionality.The theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  6. Line endings consistency : Both DOS and UNIX style line endingsFound a mix of \r\n and \n line endings in file Read me first.txt.
  7. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  8. Deprecated functions : screen_iconscreen_icon found in file class-tgm-plugin-activation.php. Deprecated since version 3.8.
    Ligne391: screen_icon( apply_filters( 'tgmpa_default_screen_icon', 'themes' ) );
    Ligne1585: screen_icon( apply_filters( 'tgmpa_default_screen_icon', 'themes' ) );
  9. Editor style : Presence of editor styleNo reference to add_editor_style() was found in the theme. It is recommended that the theme implements editor styling, so as to make the editor content match the resulting post output in the theme, for a better user experience.
  10. I18N implementation : Proper use of ___all(Possible variable $theme_text_domain found in translation function in register-tgm-plugins.php. Translation function calls should not contain PHP variables. Possible variable $theme_text_domain found in translation function in register-tgm-plugins.php. Translation function calls should not contain PHP variables. Possible variable $theme_text_domain found in translation function in register-tgm-plugins.php. Translation function calls should not contain PHP variables. Possible variable $theme_text_domain found in translation function in register-tgm-plugins.php. Translation function calls should not contain PHP variables. Possible variable $theme_text_domain found in translation function in register-tgm-plugins.php. Translation function calls should not contain PHP variables. Possible variable $theme_text_domain found in translation function in register-tgm-plugins.php. Translation function calls should not contain PHP variables. Possible variable $theme_text_domain found in translation function in register-tgm-plugins.php. Translation function calls should not contain PHP variables.
  11. CSS files : Presence of text domainText Domain: is missing from your style.css header.
  12. CSS files : Presence of .screen-reader-text class.screen-reader-text css class is needed in your theme css. See : the Codex for an example implementation.
  13. Screenshot : Screenshot fileScreenshot size is 880x660px. Screenshot size should be 1200x900, to account for HiDPI displays. Any 4:3 image size is acceptable, but 1200x900 is preferred.Bad screenshot file extension ! File screenshot.png is not an actual JPG file. Detected type was : "image/png".
Tip-off
  1. favicon presence : Favicon managementPossible Favicon found in header.php. Favicons are handled by the Site Icon setting in the customizer since version 4.3.
  2. Static links : Presence of hard-coded linksPossible hard-coded links were found in the file flickr-widget.php.
    Ligne55: <label for='<?php echo $this->get_field_id( 'username' ); ?>'><?php _e( 'Flickr ID (To find your flickID visit <a href='http://idgettr.com/' target='_blank'>idGettr</a>)' ); ?> </label> 
    Possible hard-coded links were found in the file connect.php.
    Ligne13: echo 'You need a consumer key and secret to test the sample code. Get one from <a href='https://dev.twitter.com/apps'>dev.twitter.com/apps</a>';
  3. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  4. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  5. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  6. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  7. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  8. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  9. Use of includes : Use of include or requireThe theme appears to use include or require : class-tgm-plugin-activation.php
    Ligne1073: require_once( ABSPATH . 'wp-admin/includes/class-wp-list-table.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : twitter.php
    Ligne2: require_once 'twitteroauth/twitteroauth/twitteroauth.php';
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : index.php
    Ligne9: require_once('twitteroauth/twitteroauth.php');
    Ligne10: require_once('config.php');
    Ligne33: include('html.inc');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : connect.php
    Ligne11: require_once('config.php');
    Ligne21: include('html.inc');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : test.php
    Ligne9: require_once('twitteroauth/twitteroauth.php');
    Ligne10: require_once('config.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : twitteroauth.php
    Ligne10: require_once('OAuth.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : redirect.php
    Ligne5: require_once('twitteroauth/twitteroauth.php');
    Ligne6: require_once('config.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : callback.php
    Ligne10: require_once('twitteroauth/twitteroauth.php');
    Ligne11: require_once('config.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
    The theme appears to use include or require : custom-post-types.php
    Ligne3: require_once(PARENT_DIR.'/lib/cpts/portfolio_cpt.php');
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes