Does Open Beacon MP4 Conversion and Compression have any unpatched vulnerabilities?

No. All known vulnerabilities in Open Beacon MP4 Conversion and Compression have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Open Beacon MP4 Conversion and Compression compatible with WordPress 4.1.42?

According to WordPress.org data, Open Beacon MP4 Conversion and Compression 1.0.1 has been tested up to WordPress 4.1.42. Check the plugin's changelog for the latest compatibility information.

How often is Open Beacon MP4 Conversion and Compression updated?

Open Beacon MP4 Conversion and Compression was last updated on Sep 7, 2015. Frequent updates are generally a positive security signal.

What is Open Beacon MP4 Conversion and Compression's security score?

Open Beacon MP4 Conversion and Compression has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Open Beacon MP4 Conversion and Compression Security & Risk Analysis

wordpress.org/plugins/open-beacon-mp4-conversion-and-compression

Easily convert video to MP4 and compress existing MP4 files to smaller sizes for WordPress media or to save locally for a variety of other uses.

70 active installs v1.0.1 PHP + WP 3.6+ Updated Sep 7, 2015

compressionconversionffmpegmp4video

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Open Beacon MP4 Conversion and Compression Safe to Use in 2026?

Generally Safe

Score 85/100

Open Beacon MP4 Conversion and Compression has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago

Risk Assessment

The "open-beacon-mp4-conversion-and-compression" plugin v1.0.1 presents a mixed security posture. On the positive side, it demonstrates good practices with 100% of SQL queries using prepared statements and has a history of zero known vulnerabilities. The attack surface is small, with only one AJAX handler, and importantly, it appears to have no unprotected entry points. However, significant concerns arise from the static analysis of the code. The presence of the `exec` function, a dangerous function that can execute arbitrary commands on the server, is a critical red flag. Furthermore, only 10% of output is properly escaped, leaving a substantial portion vulnerable to cross-site scripting (XSS) attacks. The taint analysis did reveal a flow with an unsanitized path, which, combined with the `exec` function, could potentially lead to command injection vulnerabilities if not handled with extreme care. The lack of robust output escaping is a significant weakness that could be exploited. While the plugin has no vulnerability history, the identified code quality issues necessitate caution.

Key Concerns

Presence of dangerous function 'exec'
Low percentage of properly escaped output
Flow with unsanitized path

Vulnerabilities

None known

Open Beacon MP4 Conversion and Compression Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Open Beacon MP4 Conversion and Compression Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

5 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

execexec($str);includes\ob-mp4-cc-assistant.php:44

execexec($convert_video_command);includes\ob-mp4-cc-upload.php:502

execexec($create_screenshot_command);includes\ob-mp4-cc-upload.php:506

Output Escaping

10% escaped49 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths

ob_mp4_cc_system_environment (includes\ob-mp4-cc-central.php:365)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Open Beacon MP4 Conversion and Compression Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_radio_ob_mp4_cc_ajax_add_termincludes\ob-mp4-cc-upload.php:51

WordPress Hooks 9

actionadmin_enqueue_scriptsincludes\ob-mp4-cc-central.php:58

actionadmin_menuincludes\ob-mp4-cc-upload.php:39

actionadd_meta_boxesincludes\ob-mp4-cc-upload.php:42

actionadd_meta_boxesincludes\ob-mp4-cc-upload.php:45

actionadmin_enqueue_scriptsincludes\ob-mp4-cc-upload.php:48

actionadd_meta_boxesincludes\ob-mp4-cc-upload.php:147

actioninitob-mp4-conversion-and-compression.php:66

actionadmin_menuob-mp4-conversion-and-compression.php:71

actionadmin_initob-mp4-conversion-and-compression.php:74

Maintenance & Trust

Open Beacon MP4 Conversion and Compression Maintenance & Trust

Maintenance Signals

WordPress version tested4.1.42

Last updatedSep 7, 2015

PHP min version

Downloads6K

Community Trust

Rating100/100

Number of ratings1

Active installs70

Alternatives

Open Beacon MP4 Conversion and Compression Alternatives

Spreebie Transcoder – Resize, Compress and Store Video

spreebie-transcoder

SPREEBIE TRANSCODER is a WordPress plugin that resizes, compresses and stores MP4 video via FFmpeg and Google Cloud Storage.

40 No CVEs

HTML5 Video Player – Embed and Play Videos in Custom Player

html5-video-player

HTML5 Video Player Plugin lets you embed responsive videos in WordPress. It’s easy to use, fast, and supports MP4, WebM, OGG, FLV, Youtube and Vimeo.

20K 8 CVEs

CP Media Player – Audio Player and Video Player

audio-and-video-player

100

CP Media Player - Audio and Video Player supported by major browsers, such as IE, Firefox, Opera, Safari, Chrome, and mobile devices: iPhone, iPad, An …

3K 1 CVE

Super Video player – Fully Customizable Video Player with Playlist

super-video-player

100

Improve WordPress user experience with Super Video Player plugin. Self-hosted, supports mp4/OGG, captions, and subtitle for engagement.

2K No CVEs

Stream Video Player

stream-video-player

Stream Video Player for WordPress its one stop solution for high quality video publishing for web or iOS.

700 1 unpatched

Developer Profile

Open Beacon MP4 Conversion and Compression Developer Profile

Thabo David Klass

3 plugins · 120 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Open Beacon MP4 Conversion and Compression

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/open-beacon-mp4-conversion-and-compression/includes/js/ob-mp4-cc-settings.js/wp-content/plugins/open-beacon-mp4-conversion-and-compression/includes/js/ob-mp4-cc-upload.js/wp-content/plugins/open-beacon-mp4-conversion-and-compression/includes/css/ob-mp4-cc-styles.css

Script Paths

/wp-content/plugins/open-beacon-mp4-conversion-and-compression/includes/js/ob-mp4-cc-settings.js/wp-content/plugins/open-beacon-mp4-conversion-and-compression/includes/js/ob-mp4-cc-upload.js

Version Parameters

/wp-content/plugins/open-beacon-mp4-conversion-and-compression/includes/js/ob-mp4-cc-settings.js?ver=/wp-content/plugins/open-beacon-mp4-conversion-and-compression/includes/js/ob-mp4-cc-upload.js?ver=/wp-content/plugins/open-beacon-mp4-conversion-and-compression/includes/css/ob-mp4-cc-styles.css?ver=

HTML / DOM Fingerprints

CSS Classes

ob-mp4-cc-upload-form

HTML Comments

Data Attributes

data-plugin-dir="open-beacon-mp4-conversion-and-compression"

JS Globals

ob_mp4_cc_settings_paramsob_mp4_cc_upload_params

FAQ