A quick look at the GitHub repo shows that the script doesn't meet current guidelines regarding Theme Settings/Data Security:<div> - Settings saved to the DB individually, rather than as a single options array</div><div>
- No nonce checking</div><div> - Uses 'manage_options' capability, rather than 'edit_theme_options'</div><div> - Uses add_menu_page() rather than add_theme_page()</div><div><br></div><div>(etc, etc, etc)<br>
<div><br></div><div>It is also enqueueing an external version of jQuery-ui, instead of using the core-bundled version.</div><div><br></div><div>Chip<br><br><div class="gmail_quote">On Tue, Apr 26, 2011 at 3:56 PM, Tammie Lister <span dir="ltr"><<a href="mailto:karmatosed@gmail.com">karmatosed@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div>
<div>
<span>
<a href="https://github.com/cheezburger/cheezcap" target="_blank">https://github.com/cheezburger/cheezcap</a></span></div><div><br></div><div>It's a beast there is a huge amount in there and it doesn't seem to fit with guidelines in all cases so confirming where we stand on it's use.</div>
<div><br></div><div>The ticket is: <a href="http://themes.trac.wordpress.org/ticket/3423" target="_blank">http://themes.trac.wordpress.org/ticket/3423</a></div><div><br></div><div>So far the theme may fail on other grounds (just getting into the test) but it is something to consider.</div>
<div>
<span><br>Regards,<div>Tammie Lister<font color="#888888"><br><br></font></div></span><div><div></div><div class="h5">
<p style="color:#a0a0a0">On Tuesday, 26 April 2011 at 21:54, Chip Bennett wrote:</p>
<blockquote type="cite" style="border-left-style:solid;border-width:1px;margin-left:0px;padding-left:10px">
<span><div><div>What's a Cheezburger Custom Administration Panel?<br><br><div>On Tue, Apr 26, 2011 at 3:51 PM, Tammie Lister <span dir="ltr"><<a href="mailto:karmatosed@gmail.com" target="_blank">karmatosed@gmail.com</a>></span> wrote:<br>
<blockquote type="cite"><div><div>
<div>
<span>Just a mini query the theme I'm currently checking uses Cheezburger Custom Administration Panel. Confirming this is ok.<br>
</span>
<span><br>Regards,<div>Tammie Lister<font color="#888888"><br><br></font></div></span><div><div>
<p style="color:#a0a0a0">On Tuesday, 26 April 2011 at 21:45, rex posadas wrote:</p><blockquote type="cite"><div>
<span><div><div><div style="font-family:tahoma,new york,times,serif;font-size:12pt">Great, Thank you. <br>I'm on it. <br> <span style="font-weight:bold"></span><div style="font-family:tahoma,new york,times,serif;font-size:12pt">
<br><div style="font-family:times new roman,new york,times,serif;font-size:12pt"><font face="Tahoma" size="2"><hr size="1"><b><span style="font-weight:bold">From:</span></b> Emil Uzelac <<a href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a>><br>
<b><span style="font-weight:bold">To:</span></b> <a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br><b><span style="font-weight:bold">Sent:</span></b> Sun, April 24, 2011 1:56:58 PM<br>
<b><span style="font-weight:bold">Subject:</span></b> Re: [theme-reviewers] @rxn Ready for Another Theme<br></font><br>
<font color="#333333"><font size="2"><font face="arial,helvetica,sans-serif">@rxn</font></font></font><div><font color="#333333"><font size="2"><font face="arial,helvetica,sans-serif"><br></font></font></font></div><div>
<font color="#333333"><font size="2"><font face="arial,helvetica,sans-serif"><span>You have one opened (assigned) ticket you requested 4 days ago: <a href="http://themes.trac.wordpress.org/ticket/3540" target="_blank">http://themes.trac.wordpress.org/ticket/3540</a></span></font></font></font></div>
<div><font color="#333333"><font size="2"><font face="arial,helvetica,sans-serif"><br></font></font></font></div><div><font color="#333333"><font size="2"><font face="arial,helvetica,sans-serif">Cheers,</font></font></font></div>
<div><font color="#333333"><font size="2"><font face="arial,helvetica,sans-serif">Emil</font></font></font></div><div><font color="#333333"><font size="2"><font face="arial,helvetica,sans-serif"><br clear="all"></font></font></font><div>
<strong><font face="arial, helvetica, sans-serif">----</font></strong></div><div><font face="arial, helvetica, sans-serif"><strong>Emil Uzelac</strong> | ThemeID | T: 224-444-0006 | Twitter: @EmilUzelac | E: <a rel="nofollow" href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a><span> | <a href="http://themeid.com/" target="_blank">http://themeid.com/</a></span></font></div>
<div><font color="#999999" face="arial, helvetica, sans-serif">Make everything as simple as possible, but not simpler. - Albert Einstein</font></div><br>
<br><br><div>On Wed, Apr 20, 2011 at 6:33 PM, rex posadas <span dir="ltr"><<a rel="nofollow" href="mailto:rexposadas@yahoo.com" target="_blank">rexposadas@yahoo.com</a>></span> wrote:<br><blockquote type="cite"><div>
<div><div style="font-family:tahoma,new york,times,serif;font-size:12pt">Hi, <br><br>My previous email must have gotten lost. <br><br>Could I have another theme to review? <br><br>My username is : rxn<br><br>Thank You. <br>
<font color="#888888"><br>Rex<br>
</font></div></div><br>_______________________________________________<br>
theme-reviewers mailing list<br>
<a rel="nofollow" href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br><span>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a></span><br>
<br></div></blockquote></div><br></div>
</div></div>
</div></div><div>_______________________________________________<br>theme-reviewers mailing list<br><a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br><a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
</div></div></span>
</div></blockquote><div>
<br>
</div>
</div></div></div>
</div><br>_______________________________________________<br>
theme-reviewers mailing list<br>
<a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
<br></div></blockquote></div><br>
</div><div>_______________________________________________<br>theme-reviewers mailing list<br><a href="mailto:theme-reviewers@lists.wordpress.org" target="_blank">theme-reviewers@lists.wordpress.org</a><br><a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
</div></div></span>
</blockquote>
<div>
<br>
</div>
</div></div></div>
</div><br>_______________________________________________<br>
theme-reviewers mailing list<br>
<a href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</a><br>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
<br></blockquote></div><br></div></div>