WP-Safety

Panda Video Security & Risk Analysis

wordpress.org/plugins/pandavideo

Plug & play Panda Video's player. Plug & play do player da Panda Video.

4K active installs v1.5.0 PHP 7.0+ WP + Updated Feb 9, 2026
pandapanda-videovideo
98
A · Safe
CVEs total2
Unpatched0
Last CVEJul 8, 2024
Download
Safety Verdict

Is Panda Video Safe to Use in 2026?

Generally Safe

Score 98/100

Panda Video has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Jul 8, 2024Updated 1mo ago
Risk Assessment

The "pandavideo" plugin v1.5.0 exhibits a mixed security posture. On the positive side, the static analysis reveals no identified dangerous functions, file operations, external HTTP requests, or raw SQL queries. A significant majority of output (97%) is properly escaped, and the absence of any identified taint flows with unsanitized paths is reassuring.

However, significant concerns arise from the plugin's vulnerability history. With two known CVEs, including one high and one medium severity vulnerability related to Path Traversal and Cross-site Scripting, this indicates a recurring pattern of input sanitization and access control issues. The fact that there are currently no unpatched vulnerabilities is good, but the presence of past vulnerabilities of this nature suggests potential for future similar flaws if not diligently addressed.

In conclusion, while the current version of "pandavideo" appears to have addressed its past critical vulnerabilities and demonstrates good practices in areas like SQL prepared statements and output escaping, the historical prevalence of Path Traversal and XSS vulnerabilities warrants careful monitoring. The lack of identified entry points in the static analysis is a positive sign, but the historical context of past vulnerabilities should not be ignored.

Key Concerns

  • Historically high and medium severity vulnerabilities
  • Vulnerabilities related to Path Traversal
  • Vulnerabilities related to XSS
  • 0 Nonce checks on entry points
  • 0 Capability checks on entry points
  • 3% Unescaped output
Vulnerabilities
2

Panda Video Security Vulnerabilities

CVEs by Year

2 CVEs in 2024
2024
Patched Has unpatched

Severity Breakdown

High
1
Medium
1

2 total CVEs

CVE-2024-5456high · 8.8Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Panda Video <= 1.4.0 - Authenticated (Contributor+) Local File Inclusion

Jul 8, 2024 Patched in 1.4.1 (24d)
CVE-2024-5457medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Panda Video <= 1.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

Jul 8, 2024 Patched in 1.4.1 (24d)
Code Analysis
Analyzed Mar 16, 2026

Panda Video Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
5
147 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

97% escaped152 total outputs
Attack Surface

Panda Video Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 5
actiontgmpa_registerincludes\hooks\activatePlugin.php:21
actionelementor/widgets/registerindex.php:53
actionelementor/controls/registerindex.php:54
actionelementor/editor/footerindex.php:55
actioninitindex.php:56
Maintenance & Trust

Panda Video Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8
Last updatedFeb 9, 2026
PHP min version7.0
Downloads33K

Community Trust

Rating0/100
Number of ratings0
Active installs4K
Alternatives

Panda Video Alternatives

XML Sitemap Generator for Google

XML Sitemap Generator for Google

google-sitemap-generator

A
96

Generate multiple types of sitemaps to improve SEO and get your website indexed quickly.

1.0M 3 CVEs
Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider

Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider

ml-slider

A
94

Slider, gallery, carousel plugin for WordPress. Build your image slider, video slider, post slider, YouTube slider, or WooCommerce product slider.

500K 12 CVEs
Prime Slider – Addons for Elementor

Prime Slider – Addons for Elementor

bdthemes-prime-slider-lite

A
95

Create responsive sliders using Elementor for hero sections, posts, logos, images, products, testimonials, and more.

100K 15 CVEs
Modula Image Gallery – Photo Grid & Video Gallery

Modula Image Gallery – Photo Grid & Video Gallery

modula-best-grid-gallery

A
87

Create responsive image galleries with drag-and-drop grid builder. Custom layouts, video support, AI optimization. Works with any theme.

100K 14 CVEs
The Ultimate Video Player For WordPress – by Presto Player

The Ultimate Video Player For WordPress – by Presto Player

presto-player

A
99

The Ultimate WordPress Video Player.

100K 2 CVEs
Developer Profile

Panda Video Developer Profile

pandavideo

1 plugin · 4K total installs

93
trust score
Avg Security Score
98/100
Avg Patch Time
24 days
View full developer profile
Detection Fingerprints

How We Detect Panda Video

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pandavideo/assets/js/reportBug.js
Script Paths
https://browser.sentry-cdn.com/7.15.0/bundle.tracing.min.js/wp-content/plugins/pandavideo/assets/js/reportBug.js

HTML / DOM Fingerprints

CSS Classes
panda-report-bug--containerpanda-about-pluginpanda-linkpanda-report-bug--buttonpanda--buttonpanda-reported-bug--buttonv-hrpanda-spacer
Data Attributes
data-settings
JS Globals
pandaWpInfo
FAQ

Frequently Asked Questions about Panda Video