WP-Safety

Polanger VideoHub Lite Security & Risk Analysis

wordpress.org/plugins/polanger-videohub-lite

Free YouTube-like video platform for WordPress. Create your own video sharing website with modern UI. Import videos from YouTube, Vimeo, and more.

0 active installs v1.1.2 PHP 7.4+ WP 5.8+ Updated Mar 11, 2026
video-gallery-pluginvideo-platformvideo-player-pluginvideo-pluginyoutube-clone
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Polanger VideoHub Lite Safe to Use in 2026?

Generally Safe

Score 100/100

Polanger VideoHub Lite has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 23d ago
Risk Assessment

The "polanger-videohub-lite" v1.1.2 plugin exhibits a generally strong security posture, with good practices observed in several areas. The high percentage of properly escaped outputs and the presence of nonce and capability checks on all identified entry points are commendable. The lack of critical or high severity taint flows and the absence of known CVEs are positive indicators. However, a significant concern lies within the taint analysis, where 3 out of 6 analyzed flows have unsanitized paths, and these are flagged as high severity. This suggests potential vulnerabilities where user-supplied data might be processed without adequate sanitization, leading to risks like path traversal or unintended file access, despite the static analysis reporting no direct file operations.

While the plugin has no recorded vulnerability history, the presence of high-severity unsanitized paths warrants caution. This indicates a potential for exploitable flaws that might not have been discovered or reported previously. The plugin's overall strengths lie in its robust handling of common web vulnerabilities such as SQL injection and cross-site scripting through prepared statements and output escaping. The weakness, however, is a critical finding in the taint analysis, highlighting a specific area for improvement to further harden the plugin against potential attacks.

Key Concerns

  • High severity flows with unsanitized paths
Vulnerabilities
None known

Polanger VideoHub Lite Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Polanger VideoHub Lite Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
4 prepared
Unescaped Output
9
523 escaped
Nonce Checks
12
Capability Checks
12
File Operations
0
External Requests
5
Bundled Libraries
0

SQL Query Safety

67% prepared6 total queries

Output Escaping

98% escaped532 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

6 flows3 with unsanitized paths
<settings-page> (admin\views\settings-page.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Polanger VideoHub Lite Attack Surface

Entry Points23
Unprotected0

AJAX Handlers 9

authwp_ajax_pvhl_fetch_videosincludes\class-pvhl-ajax.php:23
authwp_ajax_pvhl_import_videosincludes\class-pvhl-ajax.php:24
authwp_ajax_pvhl_import_singleincludes\class-pvhl-ajax.php:25
authwp_ajax_pvhl_search_videosincludes\class-pvhl-ajax.php:26
authwp_ajax_pvhl_fetch_video_infoincludes\class-pvhl-ajax.php:27
authwp_ajax_pvhl_test_api_keyincludes\class-pvhl-ajax.php:28
authwp_ajax_pvhl_set_thumbnail_from_urlincludes\class-pvhl-ajax.php:29
authwp_ajax_pvhl_load_more_videosincludes\class-pvhl-ajax.php:32
noprivwp_ajax_pvhl_load_more_videosincludes\class-pvhl-ajax.php:33

Shortcodes 14

[pvhl_videos] includes\class-pvhl-shortcodes.php:24
[pvhl_video] includes\class-pvhl-shortcodes.php:25
[pvhl_home] includes\class-pvhl-shortcodes.php:26
[pvhl_categories] includes\class-pvhl-shortcodes.php:27
[pvhl_channel] includes\class-pvhl-shortcodes.php:28
[pvhl_search] includes\class-pvhl-shortcodes.php:29
[pvhl_trending] includes\class-pvhl-shortcodes.php:30
[pvhl_latest] includes\class-pvhl-shortcodes.php:31
[pvhl_videos] public\class-pvhl-public.php:361
[pvhl_video] public\class-pvhl-public.php:362
[pvhl_categories] public\class-pvhl-public.php:363
[pvhl_playlists] public\class-pvhl-public.php:364
[pvhl_playlist] public\class-pvhl-public.php:365
[pvhl_home] public\class-pvhl-public.php:366
WordPress Hooks 22
actionadmin_menuadmin\class-pvhl-admin.php:162
filterquery_varsincludes\class-pvhl-post-types.php:90
actiontemplate_redirectincludes\class-pvhl-post-types.php:96
actioninitincludes\class-pvhl.php:58
actionplugins_loadedincludes\class-pvhl.php:188
actionadmin_enqueue_scriptsincludes\class-pvhl.php:201
actionadmin_enqueue_scriptsincludes\class-pvhl.php:202
actionadmin_menuincludes\class-pvhl.php:205
actionadmin_initincludes\class-pvhl.php:208
actioninitincludes\class-pvhl.php:212
actioninitincludes\class-pvhl.php:215
actioninitincludes\class-pvhl.php:218
actionadd_meta_boxesincludes\class-pvhl.php:221
actionsave_post_pvhl_videoincludes\class-pvhl.php:222
actionwp_enqueue_scriptsincludes\class-pvhl.php:238
actionwp_enqueue_scriptsincludes\class-pvhl.php:239
filtertemplate_includeincludes\class-pvhl.php:242
actionwp_headincludes\class-pvhl.php:245
filtercomments_openincludes\class-pvhl.php:248
filtercomments_templateincludes\class-pvhl.php:249
actioninitincludes\class-pvhl.php:253
actioninitpolanger-videohub-lite.php:55
Maintenance & Trust

Polanger VideoHub Lite Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 11, 2026
PHP min version7.4
Downloads223

Community Trust

Rating100/100
Number of ratings1
Active installs0
Alternatives

Polanger VideoHub Lite Alternatives

Video Gallery – Vimeo and YouTube Gallery

Video Gallery – Vimeo and YouTube Gallery

smart-grid-gallery

C
62

Build your utmost YouTube Gallery right away with Our Video Gallery plugin.

7K 1 unpatched
VdoCipher: Secure Video Player and Hosting

VdoCipher: Secure Video Player and Hosting

vdocipher

A
99

WordPress Video Player Plugin for VdoCipher: secure video embed, custom video player, watermark & easy integration with all LMS platforms.

2K 1 CVE
Featured Video for WordPress – VideographyWP

Featured Video for WordPress – VideographyWP

videographywp

A
99

WordPress featured video plugin that allows you to create video posts from YouTube videos.

2K 1 CVE
Simply Featured Video – Featured video support for WordPress

Simply Featured Video – Featured video support for WordPress

simply-featured-video

A
85

Simply Featured Video allows you to set a featured video from media library, YouTube, Vimeo, and more.

0 No CVEs
VideoGate – Video Showcase Plugin

VideoGate – Video Showcase Plugin

videogate

A
100

VideoGate is a user-friendly WordPress video plugin to showcase your videos. You can embed both youtube and vimeo videos.

0 No CVEs
Developer Profile

Polanger VideoHub Lite Developer Profile

Polanger

3 plugins · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Polanger VideoHub Lite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/polanger-videohub-lite/admin/css/pvhl-admin.css/wp-content/plugins/polanger-videohub-lite/admin/js/pvhl-admin.js
Script Paths
/wp-content/plugins/polanger-videohub-lite/admin/js/pvhl-admin.js
Version Parameters
polanger-videohub-lite/admin/css/pvhl-admin.css?ver=polanger-videohub-lite/admin/js/pvhl-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
pvhl-admin
Data Attributes
data-nonce='pvhl_admin_nonce'
JS Globals
pvhl_admin
FAQ

Frequently Asked Questions about Polanger VideoHub Lite