WP-Safety

FastPix.io Security & Risk Analysis

wordpress.org/plugins/fastpix-io

Upload, manage, and embed videos using FastPix.io's powerful video hosting platform directly from your WordPress dashboard.

0 active installs v1.0.0 PHP 7.4+ WP 5.0+ Updated Sep 17, 2025
embedfastpixstreamingvideovideo-hosting
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is FastPix.io Safe to Use in 2026?

Generally Safe

Score 100/100

FastPix.io has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8mo ago
Risk Assessment

The fastpix-io plugin version 1.0.0 demonstrates several strong security practices, including the exclusive use of prepared statements for all SQL queries and a very high percentage of properly escaped output. The absence of any recorded vulnerabilities, past or present, further suggests a generally secure development approach. The plugin also incorporates nonce and capability checks for most of its entry points.

However, a significant concern lies within its attack surface. There are a total of 7 entry points, with one AJAX handler identified as lacking authentication checks. While the taint analysis did not reveal critical or high-severity unsanitized flows, the presence of two flows with unsanitized paths, even if not immediately leading to exploitable vulnerabilities in this version, is a point of potential future risk. The external HTTP requests, while not directly flagged as risky in this analysis, should be monitored for their target and data handling.

In conclusion, fastpix-io v1.0.0 is largely well-secured, especially regarding data handling and output sanitization. Its clean vulnerability history is a positive indicator. The primary weakness is the single unprotected AJAX handler, which, while not currently exploited in the taint analysis, presents an identifiable security gap that could be exploited by an attacker. Further analysis of the unsanitized paths is recommended to ensure no latent risks exist.

Key Concerns

  • AJAX handler without auth check
  • Taint flows with unsanitized paths (2)
Vulnerabilities
None known

FastPix.io Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

FastPix.io Release Timeline

No version history available.
Code Analysis
Analyzed Mar 17, 2026

FastPix.io Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
103 escaped
Nonce Checks
5
Capability Checks
9
File Operations
0
External Requests
5
Bundled Libraries
0

Output Escaping

99% escaped104 total outputs
Data Flows · Security
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
handle_finalize_direct_upload (includes\class-fastpix.php:301)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

FastPix.io Attack Surface

Entry Points7
Unprotected1

AJAX Handlers 6

authwp_ajax_fastpix_delete_subtitleincludes\class-fastpix-modal.php:14
authwp_ajax_fastpix_add_subtitleincludes\class-fastpix-modal.php:15
authwp_ajax_fastpix_upload_videoincludes\class-fastpix.php:46
authwp_ajax_fastpix_initialize_direct_uploadincludes\class-fastpix.php:47
authwp_ajax_fastpix_finalize_direct_uploadincludes\class-fastpix.php:48
authwp_ajax_fastpix_check_credentialsincludes\class-fastpix.php:49

Shortcodes 1

[fastpix-io] includes\class-fastpix.php:556
WordPress Hooks 10
actionadmin_noticesfastpix-io.php:21
actionadmin_noticesfastpix-io.php:34
actionadmin_noticesfastpix-io.php:84
actionadmin_menuincludes\class-fastpix-library.php:10
actionadmin_enqueue_scriptsincludes\class-fastpix-library.php:11
actionadmin_enqueue_scriptsincludes\class-fastpix-modal.php:10
actionadmin_footerincludes\class-fastpix-modal.php:11
actionadmin_menuincludes\class-fastpix.php:43
actionadmin_initincludes\class-fastpix.php:44
actionadmin_enqueue_scriptsincludes\class-fastpix.php:45
Maintenance & Trust

FastPix.io Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedSep 17, 2025
PHP min version7.4
Downloads213

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

FastPix.io Alternatives

Jetpack VideoPress

Jetpack VideoPress

jetpack-videopress

A
100

The finest video hosting for WordPress. Drag and drop videos through the WordPress editor and keep the focus on your content, not the ads.

7K No CVEs
SmartVideo – Video Player and CDN

SmartVideo – Video Player and CDN

smartvideo

A
100

Lightweight HTML5 video player and video hosting with CDN built for WordPress

1K No CVEs
HLS Player

HLS Player

hls-player

A
91

HLS Player is a lightweight HTTP Live Streaming player for WordPress, using video.js for easy embedding HLS videos into posts and pages.

600 1 CVE
Spotlightr

Spotlightr

spotlightr

A
91

Video for Small Businesses & Big Ideas

200 1 CVE
Mux Video Uploader

Mux Video Uploader

2coders-integration-mux-video

A
100

The Mux Video Uploader for WordPress by 2Coders simplifies video uploads, video streaming, and video management.

80 No CVEs
Developer Profile

FastPix.io Developer Profile

FastPix

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect FastPix.io

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/fastpix-io/assets/css/fastpix-library.css
Version Parameters
fastpix-library

HTML / DOM Fingerprints

CSS Classes
fastpix-video-list-wrapfastpix-video-table
Data Attributes
data-fastpix-video-iddata-fastpix-access-policydata-fastpix-playback-id
FAQ

Frequently Asked Questions about FastPix.io