<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Tahoma
}
--></style>
</head>
<body class='hmmessage'>
thats what i meant, its not saved as a proper tif so photoshop did not recognise it and was unable to open it.<BR>
a normal image would go something like: Ôã¸ÓàËìüÁÞîÀß nulnul blahblah in a text editor, this one doesnt. it contains:<BR>
<BR>
<?php, <BR>
a copyright message, <BR>
__FILE__, <BR>
urldecode, <BR>
eval, <BR>
return;?><BR>
<BR>
<BR>
did you see the output in the footer?<BR>
<FONT color=#000000><div class="credits">Powered by <a href="</FONT><A href='http://wordpress.org/">Wordpress</a'><FONT color=#000000>http://wordpress.org/">Wordpress</a</FONT></A><FONT color=#000000>> <?php include("images/spacer.tif"); ?> Designed by ..etc</FONT><BR>
<FONT color=#000000>becomes:</FONT><BR><SPAN lang=SV>
<FONT color=#000000><<FONT size=2><FONT size=2>div</FONT></FONT><FONT size=2> </FONT><FONT size=2><FONT size=2>class</FONT></FONT><FONT size=2><FONT size=2>="credits"></FONT></FONT><FONT size=2>Powered by </FONT><FONT size=2><FONT size=2><</FONT></FONT><FONT size=2><FONT size=2>a</FONT></FONT><FONT size=2> </FONT><FONT size=2><FONT size=2>href</FONT></FONT><FONT size=2><FONT size=2>="http://wordpress.org/"></FONT></FONT><FONT size=2>Wordpress</FONT><FONT size=2><FONT size=2></</FONT></FONT><FONT size=2><FONT size=2>a</FONT></FONT><FONT size=2><FONT size=2>></FONT></FONT><FONT size=2> </FONT><FONT size=2><FONT size=2><</FONT></FONT><FONT size=2><FONT size=2>a</FONT></FONT><FONT size=2> </FONT><FONT size=2><FONT size=2>href</FONT></FONT><FONT size=2><FONT size=2>=' '></</FONT></FONT><FONT size=2><FONT size=2>a</FONT></FONT><FONT size=2><FONT size=2>></FONT></FONT><FONT size=2> - Designed by ..etc<BR></FONT></FONT></SPAN>
<BR> <BR>
<HR id=stopSpelling>
From: emil@themeid.com<BR>Date: Sun, 10 Apr 2011 02:43:03 -0500<BR>To: theme-reviewers@lists.wordpress.org<BR>Subject: Re: [theme-reviewers] Can I have another theme to review?<BR><BR>
<DIV><FONT size=2><FONT face=tahoma,sans-serif>this is .tif format (.tiff) image format which is not made for an online purposes. .Tiff can be opened in Photoshop if the format was saved (compressed) properly and that's not the case. Funky data will appear if the image is opened in text editor and that's normal. Either way this isn't the proper way of using images for web design.</FONT></FONT></DIV>
<DIV><FONT face=Tahoma></FONT> </DIV>
<DIV><FONT face=Tahoma>On another note <?php include("images/spacer.tif"); ?> is also bad practice as well it should be i.e. </FONT><img src="<?php echo get_stylesheet_directory_uri(); ?>/images/spacer.gif" /></DIV>
<DIV><FONT face=Tahoma></FONT> </DIV>
<DIV>Emil</DIV>
<DIV> </DIV>
<DIV><STRONG>Emil Uzelac</STRONG> | ThemeID | T: 224-444-0006 | Twitter: @EmilUzelac | E: <A href="mailto:emil@themeid.com">emil@themeid.com</A> | <A href="http://themeid.com/" target=_blank>http://themeid.com</A></DIV>
<DIV><FONT color=#999999>Make everything as simple as possible, but not simpler. - Albert Einstein</FONT></DIV><BR><BR><BR>
<DIV class=ecxgmail_quote>On Sun, Apr 10, 2011 at 2:15 AM, carolina n <SPAN dir=ltr><<A href="mailto:myazalea@hotmail.com">myazalea@hotmail.com</A>></SPAN> wrote:<BR>
<BLOCKQUOTE style="BORDER-LEFT: rgb(204,204,204) 1px solid; PADDING-LEFT: 1ex" class=ecxgmail_quote>
<DIV><EM>I'm not an expert on security</EM>, but there is something fishy about this theme. it includes a .tif image by <?php include("images/spacer.tif"); ?> in footer.php,<BR> the image cannot be recognised by photoshop etc, but when opened in a text editor, it clearly has an eval.<BR> <BR>How do you usually handle this?
<DIV class=ecxim><BR> <BR> <BR> <BR> <BR><BR> <BR>
<HR>
From: <A href="mailto:edward.caissie@gmail.com">edward.caissie@gmail.com</A><BR></DIV>Date: Sat, 9 Apr 2011 19:06:40 -0400
<DIV>
<DIV></DIV>
<DIV class=h5><BR>To: <A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A><BR>Subject: Re: [theme-reviewers] Can I have another theme to review?<BR><BR>Here you go: <A href="http://themes.trac.wordpress.org/ticket/3214" target=_blank>http://themes.trac.wordpress.org/ticket/3214</A><BR><BR>
<DIV>On Sat, Apr 9, 2011 at 2:41 PM, carolina n <SPAN dir=ltr><<A href="mailto:myazalea@hotmail.com">myazalea@hotmail.com</A>></SPAN> wrote:<BR>
<BLOCKQUOTE style="BORDER-LEFT: rgb(204,204,204) 1px solid; PADDING-LEFT: 1ex">
<DIV>
<DIV>can i have another theme to review?<BR></DIV>username poena
<DIV><BR> <BR>
<HR>
From: <A href="mailto:edward.caissie@gmail.com">edward.caissie@gmail.com</A><BR></DIV>Date: Mon, 4 Apr 2011 12:57:01 -0400
<DIV><BR>To: <A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A><BR>Subject: Re: [theme-reviewers] Can I have another theme to review?<BR><BR>Thanks, I found it via your Theme in Trac (*grin*)<BR><BR>
<DIV>On Mon, Apr 4, 2011 at 12:47 PM, carolina n <SPAN dir=ltr><<A href="mailto:myazalea@hotmail.com">myazalea@hotmail.com</A>></SPAN> wrote:<BR>
<BLOCKQUOTE style="BORDER-LEFT: rgb(204,204,204) 1px solid; PADDING-LEFT: 1ex">
<DIV>Poena.<BR><BR>
<HR>
From: <A href="mailto:edward.caissie@gmail.com">edward.caissie@gmail.com</A><BR>Date: Mon, 4 Apr 2011 12:03:38 -0400<BR>To: <A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A><BR>Subject: Re: [theme-reviewers] Can I have another theme to review?
<DIV>
<DIV></DIV>
<DIV><BR><BR>Here ya go ... <A href="http://themes.trac.wordpress.org/ticket/3165" target=_blank>http://themes.trac.wordpress.org/ticket/3165</A><BR><BR>I'll have it assigned in a moment or two (just have to remember you dot-org name *grin*)<BR><BR><BR>Cais.<BR><BR>
<DIV>On Mon, Apr 4, 2011 at 4:23 AM, carolina n <SPAN dir=ltr><<A href="mailto:myazalea@hotmail.com">myazalea@hotmail.com</A>></SPAN> wrote:<BR>
<BLOCKQUOTE style="BORDER-LEFT: rgb(204,204,204) 1px solid; PADDING-LEFT: 1ex">
<DIV>Can I have another theme to review please?<BR> <BR> <BR> <BR></DIV><BR>_______________________________________________<BR>theme-reviewers mailing list<BR><A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A><BR><A href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target=_blank>http://lists.wordpress.org/mailman/listinfo/theme-reviewers</A><BR><BR></BLOCKQUOTE></DIV><BR><BR></DIV></DIV>_______________________________________________ theme-reviewers mailing list <A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A> <A href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target=_blank>http://lists.wordpress.org/mailman/listinfo/theme-reviewers</A> </DIV><BR>_______________________________________________<BR>theme-reviewers mailing list<BR><A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A><BR><A href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target=_blank>http://lists.wordpress.org/mailman/listinfo/theme-reviewers</A><BR><BR></BLOCKQUOTE></DIV><BR><BR></DIV>_______________________________________________ theme-reviewers mailing list <A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A> <A href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target=_blank>http://lists.wordpress.org/mailman/listinfo/theme-reviewers</A> </DIV><BR>_______________________________________________<BR>theme-reviewers mailing list<BR><A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A><BR><A href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target=_blank>http://lists.wordpress.org/mailman/listinfo/theme-reviewers</A><BR><BR></BLOCKQUOTE></DIV><BR><BR></DIV></DIV>_______________________________________________ theme-reviewers mailing list <A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A> <A href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target=_blank>http://lists.wordpress.org/mailman/listinfo/theme-reviewers</A> </DIV><BR>_______________________________________________<BR>theme-reviewers mailing list<BR><A href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A><BR><A href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target=_blank>http://lists.wordpress.org/mailman/listinfo/theme-reviewers</A><BR><BR></BLOCKQUOTE></DIV><BR><BR>_______________________________________________ theme-reviewers mailing list theme-reviewers@lists.wordpress.org http://lists.wordpress.org/mailman/listinfo/theme-reviewers </body>
</html>