Scan your site now

Security Report Summary
C
Site:
Scanned Site(s):
1
IP Address:
109.234.161.50
Report Time:
05 Jun 2020 04:17:22 UTC
Checks:
Window Referrer
Window Opener
Comments
Enabled Debugging
Unsafe Functions
Warning:
Please have a look at the security issues / warnings in the report.
Warnings
Comments
Comments should be removed from the public code of a web application, since it can give an aggressor critical insights into the inner structure of the program. By using this information, the attacker could easier understand how the user session is handled by javascript or figure out the pathway data is sent to the server.
  • /*! * Bootstrap v3.3.7 (http://getbootstrap.com) * Copyright 2011-2016 Twitter, Inc. * Licensed under the MIT license */[https://www.mostawrd.com/location/js/bootstrap.min.js]
  • /**********************************************************/[https://www.mostawrd.com/location/popup/popup.js]
  • /* Function to detect opted out users */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* Disable tracking if the opt-out cookie exists. */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* Opt-out function */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* https://developers.google.com/analytics/devguides/collection/analyticsjs/ */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* <![CDATA[ */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* ]]> */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* <![CDATA[ */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* ]]> */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* <![CDATA[ */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* ]]> */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* <![CDATA[ */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* ]]> */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* Get Top Most Parent and the siblings */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* Close up just the top level parents to key the rest as it was */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* Set each parent arrow to inactive */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* Now Repeat for the current item siblings */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* Fix for when close menu on parent clicks is on */[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /***lets remove pagination from woof_current_page_link woof_current_page_link = woof_current_page_link.replace(/\page\/[0-9]+/, ""); woof_current_page_link = "https://www.mostawrd.com/shop/"; var woof_link = 'https://www.mostawrd.com/pluf/woocommerce-products-filter/'; var woof_ajaxurl = "https://www.mostawrd.com/wp-admin/admin-ajax.php"; var woof_lang = { 'orderby': "orderby", 'date': "date", 'perpage': "per page", 'pricerange': "price range", 'menu_order': "menu order", 'popularity': "popularity", 'rating': "rating", 'price': "price low to high", 'price-desc': "price high to low" }; if (typeof woof_lang_custom == 'undefined') { var woof_lang_custom = {};/*!!important*/[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /*** var woof_is_mobile = 0; var woof_show_price_search_button = 0; var woof_show_price_search_type = 0; var woof_show_price_search_type = 3; var swoof_search_slug = "swoof"; var icheck_skin = {}; icheck_skin = 'none'; var is_woof_use_chosen =1; var woof_current_values = '[]'; //+++ var woof_lang_loading = "Loading ..."; var woof_lang_show_products_filter = "show products filter"; var woof_lang_hide_products_filter = "hide products filter"; var woof_lang_pricerange = "price range"; //+++ var woof_use_beauty_scroll =0; //+++ var woof_autosubmit =1; var woof_ajaxurl = "https://www.mostawrd.com/wp-admin/admin-ajax.php"; /*var woof_submit_link = "";*/[https://www.mostawrd.com/groups/its-a-good-idea-to-agen-togel-online-optimistically-rather-than-to-end-in-smoke-cigarettes/]
  • /* * VERSION: 1.19.0 * DATE: 2016-07-14 * UPDATES AND DOCS AT: http://greensock.com * * Includes all of the following: TweenLite, TweenMax, TimelineLite, TimelineMax, EasePack, CSSPlugin, RoundPropsPlugin, BezierPlugin, AttrPlugin, DirectionalRotationPlugin * * @license Copyright (c) 2008-2016, GreenSock. All rights reserved. * This work is subject to the terms at http://greensock.com/standard-license or for * Club GreenSock members, the software agreement that was issued with your membership. * * @author: Jack Doyle, jack@greensock.com */[https://www.mostawrd.com/pluf/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0]
  • /* * SplitType * A javascript utility that splits text into individual lines, words, and characters * so they can be animated and styled independently. * @updated: 6/6/2016 * @author: Luke Peavey * @version: 1.0 * @license MIT */[https://www.mostawrd.com/pluf/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0]
  • /*! jQuery v1.12.4 | (c) jQuery Foundation | jquery.org/license | WordPress 2019-05-16 */[https://www.mostawrd.com/ini/js/jquery/jquery.js?ver=1.12.4-wp]
  • /*! jQuery Migrate v1.4.1 | (c) jQuery Foundation and other contributors | jquery.org/license */[https://www.mostawrd.com/ini/js/jquery/jquery-migrate.min.js?ver=1.4.1]
  • /* * LayerSlider * * (c) 2011-2018 George Krupa, John Gera & Kreatura Media * * Plugin web: https://layerslider.kreaturamedia.com/ * licenses: http://codecanyon.net/licenses/standard*/[https://www.mostawrd.com/pluf/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.6]
  • /* * 2D & 3D Transitions for LayerSlider * * (c) 2011-2018 George Krupa, John Gera & Kreatura Media * * Plugin web: https://layerslider.kreaturamedia.com/ * Licenses: http://codecanyon.net/licenses/*/[https://www.mostawrd.com/pluf/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.6]
  • /** * All of the code for your public-facing JavaScript source * should reside in this file. * * Note: It has been assumed you will write jQuery code here, so the * $ function reference has been prepared for usage within the scope * of this function. * * This enables you to define handlers, for when the DOM is ready: * * $(function() { * * }); * * When the window is loaded: * * $( window ).load(function() { * * }); * * ...and/or other possibilities. * * Ideally, it is not considered best practise to attach more than a * single DOM-ready or window-load handler for a particular page. * Although scripts in the WordPress core, Plugins and Themes may be * practising this, we should strive to set a better example in our own work. */[https://www.mostawrd.com/pluf/controlled-admin-access/public/js/controlled-admin-access-public.js?ver=1.0.0]
  • /******************************************** - THEMEPUNCH TOOLS Ver. 1.0 - Last Update of Tools 08.03.2018*********************************************/[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /** @fileOverview TouchSwipe - jQuery Plugin* @version 1.6.9** @author Matt Bryson http://www.github.com/mattbryson* @see https://github.com/mattbryson/TouchSwipe-Jquery-Plugin* @see http://labs.skinkers.com/touchSwipe/* @see http://plugins.jquery.com/project/touchSwipe** Copyright (c) 2010 Matt Bryson* Dual licensed under the MIT or GPL Version 2 licenses.**/[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /* TWEEN LITE */[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /*! * VERSION: 1.19.1 * DATE: 2017-01-17 * UPDATES AND DOCS AT: http://greensock.com * * @license Copyright (c) 2008-2017, GreenSock. All rights reserved. * This work is subject to the terms at http://greensock.com/standard-license or for * Club GreenSock members, the software agreement that was issued with your membership. * * @author: Jack Doyle, jack@greensock.com */[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /* TIME LINE LITE */[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /*! * VERSION: 1.17.0 * DATE: 2015-05-27 * UPDATES AND DOCS AT: http://greensock.com * * @license Copyright (c) 2008-2015, GreenSock. All rights reserved. * This work is subject to the terms at http://greensock.com/standard-license or for * Club GreenSock members, the software agreement that was issued with your membership. * * @author: Jack Doyle, jack@greensock.com */[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /* EASING PLUGIN*/[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /*! * VERSION: 1.15.5 * DATE: 2016-07-08 * UPDATES AND DOCS AT: http://greensock.com * * @license Copyright (c) 2008-2016, GreenSock. All rights reserved. * This work is subject to the terms at http://greensock.com/standard-license or for * Club GreenSock members, the software agreement that was issued with your membership. * * @author: Jack Doyle, jack@greensock.com **/[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /* CSS PLUGIN */[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /*! * VERSION: 1.19.1 * DATE: 2017-01-17 * UPDATES AND DOCS AT: http://greensock.com * * @license Copyright (c) 2008-2017, GreenSock. All rights reserved. * This work is subject to the terms at http://greensock.com/standard-license or for * Club GreenSock members, the software agreement that was issued with your membership. * * @author: Jack Doyle, jack@greensock.com */[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /* SPLIT TEXT UTIL */[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /*! * VERSION: 0.5.6 * DATE: 2017-01-17 * UPDATES AND DOCS AT: http://greensock.com * * @license Copyright (c) 2008-2017, GreenSock. All rights reserved. * SplitText is a Club GreenSock membership benefit; You must have a valid membership to use * this code without violating the terms of use. Visit http://greensock.com/club/ to sign up or get more details. * This work is subject to the software agreement that was issued with your membership. * * @author: Jack Doyle, jack@greensock.com */[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • /************************************************************************** * jquery.themepunch.revolution.js - jQuery Plugin for Revolution Slider * @version: 5.4.8 (10.06.2018) * @requires jQuery v1.7 or later (tested on 1.9) * @author ThemePunch**************************************************************************/[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1]
  • /* DOM event */[https://www.mostawrd.com/pluf/contact-form-7/includes/js/scripts.js?ver=5.1.9]
  • /* jQuery event */[https://www.mostawrd.com/pluf/contact-form-7/includes/js/scripts.js?ver=5.1.9]
  • /* * Polyfill for Internet Explorer * See https://developer.mozilla.org/en-US/docs/Web/API/CustomEvent/CustomEvent */[https://www.mostawrd.com/pluf/contact-form-7/includes/js/scripts.js?ver=5.1.9]
  • /*-------------------------------------------------------------------------------* * Script for onClick trigger functionality used by flag images * Script modified from original GTranslate plugin created by Edvard Ananyan at http://edo.webmaster.am * GTranslate Free Version is licensed under GNU/GPL license *-------------------------------------------------------------------------------*/[https://www.mostawrd.com/pluf/google-language-translator/js/scripts.js?ver=6.0.6]
  • /** * Toolbar.js * * @fileoverview jQuery plugin that creates tooltip style toolbars. * @link http://paulkinzett.github.com/toolbar/ * @author Paul Kinzett (http://kinzett.co.nz/) * @version 1.1.0 * @requires jQuery 1.7+ * * @license jQuery Toolbar Plugin v1.1.0 * http://paulkinzett.github.com/toolbar/ * Copyright 2013 - 2015 Paul Kinzett (http://kinzett.co.nz/) * Released under the MIT license. * <https://raw.github.com/paulkinzett/toolbar/master/LICENSE.txt> */[https://www.mostawrd.com/pluf/google-language-translator/js/scripts.js?ver=6.0.6]
  • /* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0*/[https://translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit]
  • /*! * jQuery blockUI plugin * Version 2.70.0-2014.11.23 * Requires jQuery v1.7 or later * * Examples at: http://malsup.com/jquery/block/ * Copyright (c) 2007-2013 M. Alsup * Dual licensed under the MIT and GPL licenses: * http://www.opensource.org/licenses/mit-license.php * http://www.gnu.org/licenses/gpl.html * * Thanks to Amir-Hossein Sobhi for some excellent contributions! */[https://www.mostawrd.com/pluf/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70]
  • /*! * JavaScript Cookie v2.1.4 * https://github.com/js-cookie/js-cookie * * Copyright 2006, 2015 Klaus Hartl & Fagner Brack * Released under the MIT license */[https://www.mostawrd.com/pluf/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4]
  • /* * VenoBox - jQuery Plugin * version: 1.8.4 * @requires jQuery >= 1.7.0 * * Examples at http://veno.es/venobox/ * License: MIT License * License URI: https://github.com/nicolafranchini/VenoBox/blob/master/LICENSE * Copyright 2013-2017 Nicola Franchini - @nicolafranchini * */[https://www.mostawrd.com/pluf/woo-product-gallery-slider/assets/public/js/venobox.min.js?ver=2.0]
  • /** MultiSlider | MIT License** Copyright (c) 2017 Trevor Blackman* http://www.multislider.info** Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.*/[https://www.mostawrd.com/location/featured-carousel/multislider.js?ver=5.4.1]
  • /* * Script for placeholder in search box * Removes the default text onclick */[https://www.mostawrd.com/location/js/migrateshop_search.js?ver=1.0]
  • /*! * jQuery UI Core 1.11.4 * http://jqueryui.com * * Copyright jQuery Foundation and other contributors * Released under the MIT license. * http://jquery.org/license * * http://api.jqueryui.com/category/ui-core/ */[https://www.mostawrd.com/ini/js/jquery/ui/core.min.js?ver=1.11.4]
  • /*! * jQuery UI Datepicker 1.11.4 * http://jqueryui.com * * Copyright jQuery Foundation and other contributors * Released under the MIT license. * http://jquery.org/license * * http://api.jqueryui.com/datepicker/ */[https://www.mostawrd.com/ini/js/jquery/ui/datepicker.min.js?ver=1.11.4]
  • /*! * jQuery UI Widget 1.11.4 * http://jqueryui.com * * Copyright jQuery Foundation and other contributors * Released under the MIT license. * http://jquery.org/license * * http://api.jqueryui.com/jQuery.widget/ */[https://www.mostawrd.com/ini/js/jquery/ui/widget.min.js?ver=1.11.4]
  • /*! * jQuery UI Button 1.11.4 * http://jqueryui.com * * Copyright jQuery Foundation and other contributors * Released under the MIT license. * http://jquery.org/license * * http://api.jqueryui.com/button/ */[https://www.mostawrd.com/ini/js/jquery/ui/button.min.js?ver=1.11.4]
  • /*! * jQuery UI Spinner 1.11.4 * http://jqueryui.com * * Copyright jQuery Foundation and other contributors * Released under the MIT license. * http://jquery.org/license * * http://api.jqueryui.com/spinner/ */[https://www.mostawrd.com/ini/js/jquery/ui/spinner.min.js?ver=1.11.4]
  • /* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0*/[https://maps.googleapis.com/maps/api/js?]
  • /*Math.uuid.js (v1.4)http://www.broofa.commailto:robert@broofa.comCopyright (c) 2010 Robert KiefferDual licensed under the MIT and GPL licenses.*/[https://maps.googleapis.com/maps/api/js?]
  • /*! This file is auto-generated */[https://www.mostawrd.com/ini/js/wp-embed.min.js?ver=5.4.1]
  • /*! tooltipster v4.2.7 */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=1.2.4]
  • /***jQuery(function ($) { jQuery('body').append('<div id="woof_html_buffer" class="woof_info_popup" style="display: none;"></div>'); jQuery.fn.life = function (types, data, fn) { jQuery(this.context).on(types, this.selector, data, fn); return this; };//http://stackoverflow.com/questions/2389540/jquery-hasparent jQuery.extend(jQuery.fn, { within: function (pSelector) { // Returns a subset of items using jQuery.filter return this.filter(function () { // Return truthy/falsey based on presence in parent return jQuery(this).closest(pSelector).length; }); } }); //+++ if (jQuery('#woof_results_by_ajax').length > 0) { woof_is_ajax = 1; } //listening attributes in shortcode [woof] woof_autosubmit = parseInt(jQuery('.woof').eq(0).data('autosubmit'), 10); woof_ajax_redraw = parseInt(jQuery('.woof').eq(0).data('ajax-redraw'), 10); //+++ woof_ext_init_functions = jQuery.parseJSON(woof_ext_init_functions); //fix for native woo price range woof_init_native_woo_price_filter(); jQuery('body').bind('price_slider_change', function (event, min, max) { if (woof_autosubmit && !woof_show_price_search_button && jQuery('.price_slider_wrapper').length < 3) { jQuery('.woof .widget_price_filter form').trigger('submit'); } else { var min_price = jQuery(this).find('.price_slider_amount #min_price').val(); var max_price = jQuery(this).find('.price_slider_amount #max_price').val(); woof_current_values.min_price = min_price; woof_current_values.max_price = max_price; } }); jQuery('.woof_price_filter_dropdown').life('change', function () { var val = jQuery(this).val(); if (parseInt(val, 10) == -1) { delete woof_current_values.min_price; delete woof_current_values.max_price; } else { var val = val.split("-"); woof_current_values.min_price = val[0]; woof_current_values.max_price = val[1]; } if (woof_autosubmit || jQuery(this).within('.woof').length == 0) { woof_submit_link(woof_get_submit_link()); } }); //change value in textinput price filter if WOOCS is installed woof_recount_text_price_filter(); //+++ jQuery('.woof_price_filter_txt').life('change', function () { var from = parseInt(jQuery(this).parent().find('.woof_price_filter_txt_from').val(), 10); var to = parseInt(jQuery(this).parent().find('.woof_price_filter_txt_to').val(), 10); if (to < from || from < 0) { delete woof_current_values.min_price; delete woof_current_values.max_price; } else { if (typeof woocs_current_currency !== 'undefined') { from = Math.ceil(from / parseFloat(woocs_current_currency.rate)); to = Math.ceil(to / parseFloat(woocs_current_currency.rate)); } woof_current_values.min_price = from; woof_current_values.max_price = to; } if (woof_autosubmit || jQuery(this).within('.woof').length == 0) { woof_submit_link(woof_get_submit_link()); } }); //*** jQuery('.woof_open_hidden_li_btn').life('click', function () { var state = jQuery(this).data('state'); var type = jQuery(this).data('type'); if (state == 'closed') { jQuery(this).parents('.woof_list').find('.woof_hidden_term').addClass('woof_hidden_term2'); jQuery(this).parents('.woof_list').find('.woof_hidden_term').removeClass('woof_hidden_term'); if (type == 'image') { jQuery(this).find('img').attr('src', jQuery(this).data('opened')); } else { jQuery(this).html(jQuery(this).data('opened')); } jQuery(this).data('state', 'opened'); } else { jQuery(this).parents('.woof_list').find('.woof_hidden_term2').addClass('woof_hidden_term'); jQuery(this).parents('.woof_list').find('.woof_hidden_term2').removeClass('woof_hidden_term2'); if (type == 'image') { jQuery(this).find('img').attr('src', jQuery(this).data('closed')); } else { jQuery(this).text(jQuery(this).data('closed')); } jQuery(this).data('state', 'closed'); } return false; }); //open hidden block woof_open_hidden_li(); //*** woocommerce native "AVERAGE RATING" widget synchronizing jQuery('.widget_rating_filter li.wc-layered-nav-rating a').click(function () { var is_chosen = jQuery(this).parent().hasClass('chosen'); var parsed_url = woof_parse_url(jQuery(this).attr('href')); var rate = 0; if (parsed_url.query !== undefined) { if (parsed_url.query.indexOf('min_rating') !== -1) { var arrayOfStrings = parsed_url.query.split('min_rating='); rate = parseInt(arrayOfStrings[1], 10); } } jQuery(this).parents('ul').find('li').removeClass('chosen'); if (is_chosen) { delete woof_current_values.min_rating; } else { woof_current_values.min_rating = rate; jQuery(this).parent().addClass('chosen'); } woof_submit_link(woof_get_submit_link()); return false; }); //WOOF start filtering button action jQuery('.woof_start_filtering_btn').life('click', function () { var shortcode = jQuery(this).parents('.woof').data('shortcode'); jQuery(this).html(woof_lang_loading); jQuery(this).addClass('woof_start_filtering_btn2'); jQuery(this).removeClass('woof_start_filtering_btn'); //redrawing [woof ajax_redraw=1] only var data = { action: "woof_draw_products", page: 1, shortcode: 'woof_nothing', //we do not need get any products, seacrh form data only woof_shortcode: shortcode }; jQuery.post(woof_ajaxurl, data, function (content) { content = jQuery.parseJSON(content); jQuery('div.woof_redraw_zone').replaceWith(jQuery(content.form).find('.woof_redraw_zone')); woof_mass_reinit(); }); return false; }); //*** var str = window.location.href; window.onpopstate = function (event) { try { console.log(woof_current_values) if (Object.keys(woof_current_values).length) { var temp = str.split('?'); var get1=""; if(temp[1]!=undefined){ get1 = temp[1].split('#'); } var str2 = window.location.href; var temp2 = str2.split('?'); if(temp2[1]==undefined){ //return false; var get2={0:"",1:""}; }else{ var get2 = temp2[1].split('#'); } if (get2[0] != get1[0]) { woof_show_info_popup(woof_lang_loading); window.location.reload(); } return false; } } catch (e) { console.log(e); } }; //*** //ion-slider price range slider woof_init_ion_sliders(); //*** woof_init_show_auto_form(); woof_init_hide_auto_form(); //*** woof_remove_empty_elements(); woof_init_search_form(); woof_init_pagination(); woof_init_orderby(); woof_init_reset_button(); woof_init_beauty_scroll(); //+++ woof_draw_products_top_panel(); woof_shortcode_observer(); //tooltip woof_init_tooltip(); //+++ //if we use redirect attribute in shortcode [woof is_ajax=0] //not for ajax, for redirect mode only if (!woof_is_ajax) { woof_redirect_init(); } woof_init_toggles();});//if we use redirect attribute in shortcode [woof is_ajax=0]//not for ajax, for redirect mode onlyfunction woof_redirect_init() { try { if (jQuery('.woof').length ) { //https://wordpress.org/support/topic/javascript-error-in-frontjs?replies=1 if (undefined !== jQuery('.woof').val()) { woof_redirect = jQuery('.woof').eq(0).data('redirect');//default value if (woof_redirect.length > 0) { woof_shop_page = woof_current_page_link = woof_redirect; } //*** /* var events = ['click', 'change', 'ifChecked', 'ifUnchecked']; for (var i = 0; i < events.length; i++) { jQuery('div.woof input, div.woof option, div.woof div, div.woof label').live(events[i], function (e) { try { if (jQuery(this).parents('.woof').data('redirect').length > 0) { woof_redirect = jQuery(this).parents('.woof').data('redirect'); } } catch (e) { console.log('Error: attribute redirection doesn works!'); } e.stopPropagation(); }); } */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/front.js?ver=1.2.4]
  • /*** return woof_redirect; } } } catch (e) { console.log(e); }}function woof_init_orderby() { jQuery('form.woocommerce-ordering').life('submit', function () { /* woo3.3 */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/front.js?ver=1.2.4]
  • /* +++ */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/front.js?ver=1.2.4]
  • /* woo3.3 */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/front.js?ver=1.2.4]
  • /* +++ */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/front.js?ver=1.2.4]
  • /*** woof_submit_link(link); if (woof_is_ajax) { history.pushState({}, "", link); if (woof_current_values.hasOwnProperty('page_id')) { woof_current_values = {'page_id': woof_current_values.page_id}; } else { woof_current_values = {}; } } } return false; });}function woof_init_pagination() { if (woof_is_ajax === 1) { //jQuery('.woocommerce-pagination ul.page-numbers a.page-numbers').life('click', function () { jQuery('a.page-numbers').life('click', function () { var l = jQuery(this).attr('href'); if (woof_ajax_first_done) { //wp-admin/admin-ajax.php?paged=2 var res = l.split("paged="); if (typeof res[1] !== 'undefined') { woof_ajax_page_num = parseInt(res[1]); } else { woof_ajax_page_num = 1; } var res2 = l.split("product-page="); if (typeof res2[1] !== 'undefined') { woof_ajax_page_num = parseInt(res2[1]); } } else { var res = l.split("page/"); if (typeof res[1] !== 'undefined') { woof_ajax_page_num = parseInt(res[1]); } else { woof_ajax_page_num = 1; } var res2 = l.split("product-page="); if (typeof res2[1] !== 'undefined') { woof_ajax_page_num = parseInt(res2[1]); } } //+++ //if (woof_autosubmit) - pagination doesn need pressing any submit button!! { woof_submit_link(woof_get_submit_link(),0); } return false; }); }}function woof_init_search_form() { woof_init_checkboxes(); woof_init_mselects(); woof_init_radios(); woof_price_filter_radio_init(); woof_init_selects(); //for extensions if (woof_ext_init_functions !== null) { jQuery.each(woof_ext_init_functions, function (type, func) { eval(func + '()'); }); } //+++ //var containers = jQuery('.woof_container'); //+++ jQuery('.woof_submit_search_form').click(function () { if (woof_ajax_redraw) { //[woof redirect="http://test-all/" autosubmit=1 ajax_redraw=1 is_ajax=1 tax_only="locations" by_only="none"] woof_ajax_redraw = 0; woof_is_ajax = 0; } //*** woof_submit_link(woof_get_submit_link()); return false; }); //*** jQuery('ul.woof_childs_list').parent('li').addClass('woof_childs_list_li'); //*** woof_remove_class_widget(); woof_checkboxes_slide();}var woof_submit_link_locked = false;function woof_submit_link(link,ajax_redraw) { if (woof_submit_link_locked) { return; } if(typeof WoofTurboMode!='undefined'){ WoofTurboMode.woof_submit_link(link); return; } if(typeof ajax_redraw == 'undefined' ){ ajax_redraw=woof_ajax_redraw; } woof_submit_link_locked = true; woof_show_info_popup(woof_lang_loading); if (woof_is_ajax === 1 && !ajax_redraw) { woof_ajax_first_done = true; var data = { action: "woof_draw_products", link: link, page: woof_ajax_page_num, shortcode: jQuery('#woof_results_by_ajax').data('shortcode'), woof_shortcode: jQuery('div.woof').data('shortcode') }; jQuery.post(woof_ajaxurl, data, function (content) { content = jQuery.parseJSON(content); if (jQuery('.woof_results_by_ajax_shortcode').length) { if(typeof content.products!="undefined"){ jQuery('#woof_results_by_ajax').replaceWith(content.products); } } else { if(typeof content.products!="undefined"){ jQuery('.woof_shortcode_output').replaceWith(content.products); } } if(typeof content.additional_fields != "undefined"){ jQuery.each(content.additional_fields,function(selector,html_data){ jQuery(selector).replaceWith(html_data); }); } jQuery('div.woof_redraw_zone').replaceWith(jQuery(content.form).find('.woof_redraw_zone')); woof_draw_products_top_panel(); woof_mass_reinit(); woof_submit_link_locked = false; //removing id woof_results_by_ajax - multi in ajax mode sometimes //when uses shorcode woof_products in ajax and in settings try ajaxify shop is Yes jQuery.each(jQuery('#woof_results_by_ajax'), function (index, item) { if (index == 0) { return; } jQuery(item).removeAttr('id'); }); //infinite scroll woof_infinite(); //*** script after ajax loading here woof_js_after_ajax_done(); //*** change link in button "add to cart" woof_change_link_addtocart(); /*tooltip*/[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/front.js?ver=1.2.4]
  • /*tooltip*/[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/front.js?ver=1.2.4]
  • /*** if (Object.keys(woof_current_values).length === 2) { if (('min_price' in woof_current_values) && ('max_price' in woof_current_values)) { woof_current_page_link = woof_current_page_link.replace(new RegExp(/page\/(\d+)\//), ""); var l = woof_current_page_link + '?min_price=' + woof_current_values.min_price + '&max_price=' + woof_current_values.max_price; if (woof_is_ajax) { history.pushState({}, "", l); } return l; } } //*** if (Object.keys(woof_current_values).length === 0) { if (woof_is_ajax) { history.pushState({}, "", woof_current_page_link); } return woof_current_page_link; } //+++ if (Object.keys(woof_really_curr_tax).length > 0) { woof_current_values['really_curr_tax'] = woof_really_curr_tax.term_id + '-' + woof_really_curr_tax.taxonomy; } //+++ var link = woof_current_page_link + "?" + swoof_search_slug + "=1"; //console.log(woof_current_page_link); //just for the case when no permalinks enabled if (!woof_is_permalink) { if (woof_redirect.length > 0) { link = woof_redirect + "?" + swoof_search_slug + "=1"; if (woof_current_values.hasOwnProperty('page_id')) { delete woof_current_values.page_id; } } else { link = location.protocol + '//' + location.host + "?" + swoof_search_slug + "=1"; /* if (!woof_is_ajax) { link = location.protocol + '//' + location.host + "?" + swoof_search_slug + "=1"; } if (woof_current_values.hasOwnProperty('page_id')) { link = location.protocol + '//' + location.host + "?" + swoof_search_slug + "=1"; } */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/front.js?ver=1.2.4]
  • /*** if ((index == 'min_price' || index == 'max_price') && is_price_in) { return; } if ((index == 'min_price' || index == 'max_price') && !is_price_in) { is_price_in = true; index = 'price'; value = woof_lang_pricerange; } //+++ value = value.toString().trim(); if (value.search(',')) { value = value.split(','); } //+++ jQuery.each(value, function (i, v) { if (index == 'page') { return; } if (index == 'post_type') { return; } var txt = v; if (index == 'orderby') { if (woof_lang[v] !== undefined) { txt = woof_lang.orderby + ': ' + woof_lang[v]; } else { txt = woof_lang.orderby + ': ' + v; } } else if (index == 'perpage') { txt = woof_lang.perpage; } else if (index == 'price') { txt = woof_lang.pricerange; } else { var is_in_custom = false; if (Object.keys(woof_lang_custom).length > 0) { jQuery.each(woof_lang_custom, function (i, tt) { if (i == index) { is_in_custom = true; txt = tt; if (index == 'woof_sku') { txt += " " + v;//because search by SKU can by more than 1 value } } }); } if (!is_in_custom) { try { //txt = jQuery('.woof_n_' + index + '_' + v).val(); txt = jQuery("input[data-anchor='woof_n_" + index + '_' + v + "']").val(); //console.log("input[data-anchor='woof_n_" + index + '_' + v + "']") } catch (e) { console.log(e); } if (typeof txt === 'undefined') { txt = v; } } /* hidden feature if (jQuery('input[name=woof_t_' + index + ']').length > 0) { txt = jQuery('input[name=woof_t_' + index + ']').val() + ': ' + txt; } */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/front.js?ver=1.2.4]
  • /* jQuery('.woof_radio_label').unbind(); jQuery('label.woof_radio_label').click(function () { jQuery(this).prev().find('.woof_radio_term').trigger('ifChecked'); jQuery(this).parents('.woof_list_radio').find('.checked').removeClass('checked'); jQuery(this).prev().addClass('checked'); return false; }); */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/html_types/radio.js?ver=1.2.4]
  • /*{disable_search_threshold: 10}*/[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/html_types/select.js?ver=1.2.4]
  • /*{disable_search_threshold: 10}*/[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/html_types/mselect.js?ver=1.2.4]
  • /*! Chosen, a Select Box Enhancer for jQuery and Prototype by Patrick Filler for Harvest, http://getharvest.com Version 1.1.0 Full source at https://github.com/harvesthq/chosen Copyright (c) 2011 Harvest http://getharvest.com MIT License, https://github.com/harvesthq/chosen/blob/master/LICENSE.md This file is generated by `grunt build`, do not edit it by hand. */[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/chosen/chosen.jquery.min.js?ver=1.2.4]
Enabled Debugging
The JavaScript debugging functions should always removed after development stage, because they could expose informations on the inner workings of the code. In production, it is a loophole and could show a possible attacker where to find possibly exploitable vulnerabilities or interesting variables.
  • console.log(a)},W="",X="",Y=function(a,b){b=b||P;var c,d,e=b.style;if(void 0!==e[a])return a;for(a=a.charAt(0).toUpperCase()+a.substr(1),c=["O","Moz","ms","Ms","Webkit"],d=5;--d>-1&&void 0===e[c[d]+a];);[https://www.mostawrd.com/pluf/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0]
  • console.log("GSAP encountered missing dependency: "+g)}i=!1}}("undefined"!=typeof module&&module.exports&&"undefined"!=typeof global?global:this||window,"TweenMax");[https://www.mostawrd.com/pluf/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0]
  • console.log("JQMIGRATE: Migrate is installed"+(a.migrateMute?"":" with logging active")+", version "+a.migrateVersion),a.migrateTrace===c&&(a.migrateTrace=!0),a.migrateReset=function(){f={},a.migrateWarnings.length=0},"BackCompat"===document.compatMode&&d("jQuery is not compatible with Quirks Mode");[https://www.mostawrd.com/ini/js/jquery/jquery-migrate.min.js?ver=1.4.1]
  • console.log("GSAP encountered missing dependency: "+h)}j=!1}}("undefined"!=typeof module&&module.exports&&"undefined"!=typeof global?global:this||window,"TweenLite");[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • console.log(a)},X="",Y="",Z=function(a,b){b=b||Q;var c,d,e=b.style;if(void 0!==e[a])return a;for(a=a.charAt(0).toUpperCase()+a.substr(1),c=["O","Moz","ms","Ms","Webkit"],d=5;--d>-1&&void 0===e[c[d]+a];);[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1]
  • console.log("Slider Is Running Already"),!1):((e[0].opt.c=e)[0].opt.ul=e.find(">ul"),runSlider(e,e[0].opt),!0)},revnext:function(){return this.each(function(){var e=jQuery(this);[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1]
  • console.log("%cSlider Revolution Warning (Core:"+_R.getversion().core+")","color:#c0392b;font-weight:bold;"),console.log("%c Core is older than expected ("+e.min_core+") from "+e.alias,"color:#333"),console.log("%c Please update Slider Revolution to the latest version.","color:#333"),console.log("%c It might be required to purge and clear Server/Client side Caches.","color:#333")),e.check="stop"):_R.getversion()[e.name]!=undefined&&e.version<_R.getversion()[e.name]&&(e.check===undefined&&(console.log("%cSlider Revolution Warning (Core:"+_R.getversion().core+")","color:#c0392b;font-weight:bold;"),console.log("%c "+e.alias+" ("+e.version+") is older than requiered ("+_R.getversion()[e.name]+")","color:#333"),console.log("%c Please update Slider Revolution to the latest version.","color:#333"),console.log("%c It might be required to purge and clear Server/Client side Caches.","color:#333")),e.check="stop")),i[e.alias]===undefined&&(i[e.alias]=new Object,i[e.alias].alias=e.alias,i[e.alias].ver=e.version,i[e.alias].name=e.name),jQuery("body").data("tp_rs_version",i),e},currentSlideIndex:function(e){var i=e.c.find(".active-revslide").index();[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1]
  • console.log("Call Back Failed")}},get_browser:function(){var e,i=navigator.appName,t=navigator.userAgent,a=t.match(/(opera|chrome|safari|firefox|msie)\/?\s*(\.?\d+(\.\d+)*)/i);[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1]
  • console.log(" "),!(t.modulesfailing=!0)):(jQuery.ajax({url:t.jsFileLocation+i+t.extensions_suffix+"?version="+version.core,dataType:"script",cache:!0,error:function(e){console.warn("Slider Revolution 5.0 Error !"),console.error("Failure at Loading:"+i+t.extensions_suffix+" on Path:"+t.jsFileLocation),console.info(e)}}),void jQuery("body").data(i,!0)))},getNeededScripts=function(t,e){var i=new Object,a=t.navigation;return i.kenburns=!1,i.parallax=!1,i.carousel=!1,i.navigation=!1,i.videos=!1,i.actions=!1,i.layeranim=!1,i.migration=!1,e.data("version")&&e.data("version").toString().match(/5./gi)?(e.find("img").each(function(){"on"==jQuery(this).data("kenburns")&&(i.kenburns=!0)}),("carousel"==t.sliderType||"on"==a.keyboardNavigation||"on"==a.mouseScrollNavigation||"on"==a.touch.touchenabled||a.arrows.enable||a.bullets.enable||a.thumbnails.enable||a.tabs.enable)&&(i.navigation=!0),e.find(".tp-caption, .tp-static-layer, .rs-background-video-layer").each(function(){var e=jQuery(this);[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1]
  • console.log('SuperPWA service worker ready');[https://www.mostawrd.com/pluf/super-progressive-web-apps/public/js/register-sw.js]
  • console.log('Registration failed with ' + error);[https://www.mostawrd.com/pluf/super-progressive-web-apps/public/js/register-sw.js]
  • console.log(a,c))}};d.fn.ubermenu=function(a){var c=arguments;if(a===l||"object"===typeof a)return this.each(function(){d.data(this,"plugin_ubermenu")||d.data(this,"plugin_ubermenu",new k(this,a))});[https://www.mostawrd.com/pluf/ubermenu/assets/js/ubermenu.min.js?ver=3.5]
  • console.log("Notice: UberMenu initialized via "+f+". This indicates that an unrelated error on the site prevented it from loading via the normal document ready event."),"."==window.location.hash.substring(1,2)?(f=d("body").find(window.location.hash.substring(1)),f.length&&window.scrollTo(0,f.offset().top-ubermenu_data.scrollto_offset)):window.location.hash.length&&setTimeout(function(){try{var f=d("body").find(window.location.hash);[https://www.mostawrd.com/pluf/ubermenu/assets/js/ubermenu.min.js?ver=3.5]
  • console.log("The "+a+" method of the "+d+" plugin conflicts with another plugin or native methods"):(c[a]=function(){return g[a].apply(g,Array.prototype.slice.apply(arguments))},c[a].bridged=g))}),c[d]=g}return this},__setWindow:function(a){return h.window=a,this},_getRuler:function(a){return new b(a)},_off:function(){return this.__$emitterPrivate.off.apply(this.__$emitterPrivate,Array.prototype.slice.apply(arguments)),this},_on:function(){return this.__$emitterPrivate.on.apply(this.__$emitterPrivate,Array.prototype.slice.apply(arguments)),this},_one:function(){return this.__$emitterPrivate.one.apply(this.__$emitterPrivate,Array.prototype.slice.apply(arguments)),this},_plugin:function(b){var c=this;if("string"==typeof b){var d=b,e=null;return d.indexOf(".")>0?e=c.__plugins[d]:a.each(c.__plugins,function(a,b){return b.name.substring(b.name.length-d.length-1)=="."+d?(e=b,!1):void 0}),e}if(b.name.indexOf(".")<0)throw new Error("Plugins must be namespaced");[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=1.2.4]
  • console.log(c);[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=1.2.4]
  • console.log(c),this.each(function(){var c=!1,d=a(this),e=d.data("tooltipster-ns"),f=null;e?g?c=!0:m&&false:c=!0,c&&(f=new a.Tooltipster(this,b[0]),e||(e=[]),e.push(f.__namespace),d.data("tooltipster-ns",e),d.data(f.__namespace,f),f.__options.functionInit&&f.__options.functionInit.call(f,f,{origin:this}),f._trigger("init")),a.tooltipster.__instancesLatestArr.push(f)}),this},b.prototype={__init:function(b){this.__$tooltip=b,this.__$tooltip.css({left:0,overflow:"hidden",position:"absolute",top:0}).find(".tooltipster-content").css("overflow","auto"),this.$container=a('<div class="tooltipster-ruler"></div>').append(this.__$tooltip).appendTo(h.window.document.body)},__forceRedraw:function(){var a=this.__$tooltip.parent();[https://www.mostawrd.com/pluf/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=1.2.4]
Unsafe Functions
eval() is eval! This functions and similar ones (document.write(), document.writeln(), element.innerHTML, element.outerHTML, element.insertAdjacentHTML()) should never be used in production stage of a website, because the parsing of the executable string is often not secure and result therefore often in a cross-site scripting vulnerability. Instead of these functions create html elements by script and add it to the DOM object.
  • eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);[https://www.mostawrd.com/pluf/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.6]
  • eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);[https://www.mostawrd.com/pluf/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.6]
  • eval(obj.params))}),opt.cid=container.attr("id"),opt.ul.css({visibility:"visible"}),opt.slideamount=opt.ul.find(">li").not(".tp-invisible-slide").length,opt.realslideamount=opt.ul.find(">li").length,opt.slayers=container.find(".tp-static-layers"),opt.slayers.data("index","staticlayers"),1!=opt.waitForInit&&(container[0].opt=opt,runSlider(container,opt))},onFullScreenChange=function(){jQuery("body").data("rs-fullScreenMode",!jQuery("body").data("rs-fullScreenMode")),jQuery("body").data("rs-fullScreenMode")&&setTimeout(function(){jQuery(window).trigger("resize")},200)},runSlider=function(t,x){if(x.sliderisrunning=!0,x.ul.find(">li").each(function(e){jQuery(this).data("originalindex",e)}),x.allli=x.ul.find(">li"),jQuery.each(x.allli,function(e,i){(i=jQuery(i)).data("origindex",i.index())}),x.li=x.ul.find(">li").not(".tp-invisible-slide"),"on"==x.shuffle){var e=new Object,i=x.ul.find(">li:first-child");[https://www.mostawrd.com/pluf/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1]
Additional Information
Link Opener
The window.open("https://example.com/", "_blanc", "noopener"); attribute should always be added to the window.open() function, which open a site in a new tab, to reduce the risk of reverse tabnabbing. Otherwise javascript on the new page has full control over the previous visited page, including permission to change the DOM object and possibly steal session cookies.
Link Referrer
The window.open("https://example.com/", "_blanc", "referrer"); attribute should always be added to the window.open() function to prevent reverse tabnabbing for older browser, which do not support the noopener attribute and to prevent phishing attacks.
Comments
Comments should be removed from the public code of a web application, since it can give an aggressor critical insights into the inner structure of the program. By using this information, the attacker could easier understand how the user session is handled by javascript or figure out the pathway data is sent to the server.
Enabled Debugging
The JavaScript debugging functions should always removed after development stage, because they could expose informations on the inner workings of the code. In production, it is a loophole and could show a possible attacker where to find possibly exploitable vulnerabilities or interesting variables.
Unsafe Functions
eval() is eval! This functions and similar ones (document.write(), document.writeln(), element.innerHTML, element.outerHTML, element.insertAdjacentHTML()) should never be used in production stage of a website, because the parsing of the executable string is often not secure and result therefore often in a cross-site scripting vulnerability. Instead of these functions create html elements by script and add it to the DOM object.