1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Are ThemeForest's themes "infected" or something like that?

Discussion in 'Blogging' started by aspe_heat, May 7, 2014.

  1. aspe_heat

    aspe_heat Power Member

    Joined:
    Oct 7, 2010
    Messages:
    799
    Likes Received:
    595
    Gender:
    Male
    Hey everyone,

    I bought a new theme for my website from ThemeForest four months ago and it had one problem - author archives were not working at all and my authors wanted to have their own pages to show off their work. I contacted theme designer and he said that he will fix it. Four months later, he still hasn't done anything about it.

    I went to the marketplace, gave him 1-star rating and after a few hours, my website went to hell. It is not reading external CSS, it's loading slowly and I can't do ANYTHING in admin panel, it always returns me to a white screen. For example, I input some text or activate a plugin, and instead of refreshing the page and saying "The plugin has been activated", all I get is a white screen.

    It's annoying and my writers can't post ANYTHING. Is there any way he can control the theme remotely and ruin my website like that? I haven't gotten any sleep last night, still trying to fix it but no damn luck...
     
  2. jimmylegs

    jimmylegs Senior Member

    Joined:
    Oct 1, 2013
    Messages:
    960
    Likes Received:
    294
    Occupation:
    Text Message/Social Media Marketing Specialist
    Location:
    Getting Your Business Sales
    Only the free ones that have been cracked are infected. The bought ones are perfectly fine.
     
  3. Argoss

    Argoss Junior Member

    Joined:
    Dec 3, 2013
    Messages:
    102
    Likes Received:
    12
    ^ What Jimmy said.

    If you legitimately purchased the theme, then I don't think this is related at all.

    Is it possible that you made any changes during the last few days and something accidentally broke? Or did you try to update any plugins?
     
  4. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,468
    Likes Received:
    10,148
    A theme author has a lot of ways to be malicious if he wants to, so yes, it could be possible. Or it could be a coincidence. No way of knowing without seeing the code.
     
  5. Asif WILSON Khan

    Asif WILSON Khan Executive VIP Premium Member

    Joined:
    Nov 10, 2012
    Messages:
    10,132
    Likes Received:
    28,592
    Gender:
    Male
    Occupation:
    Fun Lovin' Criminal
    Location:
    London
    Home Page:
    • Thanks Thanks x 1
  6. Duffers5000

    Duffers5000 Elite Member

    Joined:
    Apr 1, 2012
    Messages:
    2,466
    Likes Received:
    7,615
    I have bought a themeforest theme that had malware in it. Not to the extent that my site was remote accessed....I think the developer was just very sloppy. For that reason I dont buy themes off new developers or themes that only have a handful of sales racked up.
     
    • Thanks Thanks x 1
  7. Corydoras007

    Corydoras007 Regular Member

    Joined:
    Sep 17, 2012
    Messages:
    303
    Likes Received:
    53
    Would you like to add on what how or where to look for malicious codes?

    You think anti-malware can help in detecting.
     
  8. dandan594594

    dandan594594 Power Member

    Joined:
    Jan 31, 2013
    Messages:
    533
    Likes Received:
    222
    Location:
    UK
    I had the same thing testing 2 free ones yesterday. I changed all plugins, access and played with the code a little then gave up. It has something to do with the wpbakery install that comes with most of their themes.. I maybe wrong.
     
  9. Asif WILSON Khan

    Asif WILSON Khan Executive VIP Premium Member

    Joined:
    Nov 10, 2012
    Messages:
    10,132
    Likes Received:
    28,592
    Gender:
    Male
    Occupation:
    Fun Lovin' Criminal
    Location:
    London
    Home Page:
    Malicious code is usually encrypted so searching through your files is a good start or use a plugin like http://wordpress.org/plugins/exploit-scanner/ and the ones I posted above.
     
    • Thanks Thanks x 2
  10. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,468
    Likes Received:
    10,148
    Unless you 're a programmer, your best bet is to use plugins like the one W130SN suggested.
     
  11. dennis07

    dennis07 Junior Member

    Joined:
    Apr 30, 2014
    Messages:
    101
    Likes Received:
    10
    I've bought multiple themes on ThemeForest, but never had this happen to me. It's definitely possible for him to have added malware to the theme, but it's so unlikely. Are you sure it's not just a host problem?