0
Validation results

WR Nitro

WR Nitro

WordPress 4.8.2 theme
0
Critical alerts
  1. Security breaches : Use of PHP sytem calls Found ->exec in file FacebookCurlHttpClient.php.
    Line 139: $this->rawResponse = $this->facebookCurl->exec();
  2. Security breaches : Use of base64_decode() Found base64_decode in file SignedRequest.php.
    Line 300: return base64_decode($urlDecodedBase64);
  3. Security breaches : Use of base64_encode() Found base64_encode in file SignedRequest.php.
     return strtr(base64_encode($input), '+/', '-_');
  4. Malware : Operations on file system file_get_contents was found in the file parsers.php
    Line 66: $success = $dom->loadXML( file_get_contents( $file ) );
    Line 269: if ( ! xml_parse( $xml, file_get_contents( $file ), true ) ) {
    file_get_contents was found in the file parsers.php
    Line 66: $success = $dom->loadXML( file_get_contents( $file ) );
    Line 269: if ( ! xml_parse( $xml, file_get_contents( $file ), true ) ) {
    fopen was found in the file parsers.php
    Line 411: $fp = $this->fopen( $file, 'r' );
    Line 637: function fopen( $filename, $mode = 'r' ) {
    Line 640: return fopen( $filename, $mode );
    fclose was found in the file parsers.php
    Line 460: $this->fclose($fp);
    Line 655: function fclose( $fp ) {
    Line 658: return fclose( $fp );
    fopen was found in the file parsers.php
    Line 411: $fp = $this->fopen( $file, 'r' );
    Line 637: function fopen( $filename, $mode = 'r' ) {
    Line 640: return fopen( $filename, $mode );
    fopen was found in the file parsers.php
    Line 411: $fp = $this->fopen( $file, 'r' );
    Line 637: function fopen( $filename, $mode = 'r' ) {
    Line 640: return fopen( $filename, $mode );
    fclose was found in the file parsers.php
    Line 460: $this->fclose($fp);
    Line 655: function fclose( $fp ) {
    Line 658: return fclose( $fp );
    fclose was found in the file parsers.php
    Line 460: $this->fclose($fp);
    Line 655: function fclose( $fp ) {
    Line 658: return fclose( $fp );
    file_get_contents was found in the file sample-data.php
    Line 121: $sample_packages = file_get_contents( $sample_packages );
    file_get_contents was found in the file pluggable.php
    Line 1157: $file = file_get_contents( $wp_cache_file );
    fopen was found in the file pluggable.php
    Line 1158: $fp = @fopen( $wp_cache_link, 'w' );
    fclose was found in the file pluggable.php
    Line 1162: fclose( $fp );
    fopen was found in the file UrandomPseudoRandomStringGenerator.php
    Line 65: $stream = fopen('/dev/urandom', 'rb');
    fread was found in the file UrandomPseudoRandomStringGenerator.php
    Line 77: $binaryString = fread($stream, $length);
    fclose was found in the file UrandomPseudoRandomStringGenerator.php
    Line 78: fclose($stream);
    file_get_contents was found in the file FacebookStream.php
    Line 75: $rawResponse = file_get_contents($url, false, $this->stream);
    fopen was found in the file FacebookFile.php
    Line 77: $this->stream = fopen($this->path, 'r');
    fclose was found in the file FacebookFile.php
    Line 90: fclose($this->stream);
  5. Malware : Network operations curl_init was found in the file FacebookCurl.php
    Line 46: $this->curl = curl_init();
    curl_exec was found in the file FacebookCurl.php
    Line 77: return curl_exec($this->curl);
  6. Deprecated functions : wp_get_http wp_get_http found in file wordpress-importer.php. Deprecated since version 4.4. Use WP_Http instead.
    Line 903: $headers = wp_get_http( $url, $upload['file'] );
Warning
  1. Text domain : Incorrect use of translation functions.Found a translation function that has an incorrect number of arguments. Function __, with the arguments '<div class="post-author overlay_bg" ', >%1$s%2$s</div>, 'wr-nitro' in file single.php.Found a translation function that has an incorrect number of arguments. Function __, with the arguments '<div class="entry-author" ', >%1$s<span class=db mgt10>%2$s</span></div>, 'wr-nitro' in file style-2.php.Found a translation function that has an incorrect number of arguments. Function __, with the arguments '<div class="entry-author" ', >%1$s<span class=db mgt10>%2$s</span></div>, 'wr-nitro' in file style-1.php.More than one text-domain is being used in this theme. This means the theme will not be compatible with WordPress.org language packs. The domains found are wr-nitro, context, author, echo, >%1$s%2$s</div>, >%1$s<span class=db mgt10>%2$s</span></div>.
  2. Plugin territory : Plugin territory functionalitiesThe theme uses the add_shortcode() function. Custom post-content shortcodes are plugin-territory functionality.
  3. Custom elements : Presence of custom headerNo reference to custom header was found in the theme.
  4. Custom elements : Presence of custom backgroundNo reference to custom background was found in the theme.
Tip-off
  1. Optional files : Presence of rtl stylesheet rtl.cssThis theme does not contain optional file rtl.php.
  2. Optional files : Presence of front page template file front-page.phpThis theme does not contain optional file front-page.php.
  3. Optional files : Presence of home template file home.phpThis theme does not contain optional file home.php.
  4. Optional files : Presence of category template file category.phpThis theme does not contain optional file category.php.
  5. Optional files : Presence of tag template file tag.phpThis theme does not contain optional file tag.php.
  6. Optional files : Presence of term template file taxonomy.phpThis theme does not contain optional file taxonomy.php.
  7. Optional files : Presence of author template file author.phpThis theme does not contain optional file author.php.
  8. Optional files : Presence of date/time template file date.phpThis theme does not contain optional file date.php.
  9. Optional files : Presence of attachment template file attachment.phpThis theme does not contain optional file attachment.php.
  10. Optional files : Presence of image template file image.phpThis theme does not contain optional file image.php.
  11. Use of includes : Use of include or requireThe theme appears to use include or require : core.php
    Line 138: require_once( ABSPATH . 'wp-admin/includes/plugin.php' );
    If these are being used to include separate sections of a template from independent files, then get_template_part() should be used instead. Otherwise, use include_once or require_once instead.
Other checked themes