Sticky Youtube Video Onscroll Security & Risk Analysis
wordpress.org/plugins/sticky-youtube-video-onscrollThis plugin is perfect to make your YouTube Video sticky on scroll with the play of youtube videos available at your WordPress Posts/pages.
Is Sticky Youtube Video Onscroll Safe to Use in 2026?
Generally Safe
Score 100/100Sticky Youtube Video Onscroll has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'sticky-youtube-video-onscroll' plugin v1.0.3 presents a generally positive security posture based on the static analysis. The plugin demonstrates good security practices by avoiding dangerous functions, employing prepared statements for all SQL queries, and limiting file operations and external HTTP requests. The presence of nonce and capability checks, though limited in number, suggests some awareness of securing entry points.
However, there are some areas that warrant attention. A significant portion of the output (23%) is not properly escaped, creating a potential risk of Cross-Site Scripting (XSS) vulnerabilities if user-controlled data is directly included in these outputs. While the attack surface is reported as zero, this could be an artifact of the analysis tool or indicate a very minimal plugin functionality. The absence of any recorded vulnerabilities in its history is a strong positive indicator of its past security.
In conclusion, the plugin appears to be built with a reasonable level of security awareness, particularly regarding core security principles like SQL injection prevention. The primary concern lies with the unescaped output, which needs to be addressed to mitigate XSS risks. The minimal attack surface and clean vulnerability history are strengths, but the unescaped output is a notable weakness.
Key Concerns
- Unescaped output detected
Sticky Youtube Video Onscroll Security Vulnerabilities
Sticky Youtube Video Onscroll Code Analysis
Output Escaping
Sticky Youtube Video Onscroll Attack Surface
WordPress Hooks 12
Maintenance & Trust
Sticky Youtube Video Onscroll Maintenance & Trust
Maintenance Signals
Community Trust
Sticky Youtube Video Onscroll Alternatives
Lazy load videos and sticky control
lazy-load-videos-and-sticky-control
Lazy load and sticky your video. Super-easy and fun!
Play Pause Button for Video
play-pause-button-for-video
This plugin used for add automatically 'Play Pause' button on video with sticky & floating features.
Sticky Video for Youtube
yt-sticky-video
Gutenberg block to adjust sticky video on frontend side.
XML Sitemap Generator for Google
google-sitemap-generator
Generate multiple types of sitemaps to improve SEO and get your website indexed quickly.
Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider
ml-slider
Slider, gallery, carousel plugin for WordPress. Build your image slider, video slider, post slider, YouTube slider, or WooCommerce product slider.
Sticky Youtube Video Onscroll Developer Profile
4 plugins · 330 total installs
How We Detect Sticky Youtube Video Onscroll
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/sticky-youtube-video-onscroll/syvo-style.csssyvo-style.css?ver=1.0.3svyo-video-script.js?ver=1.0.3HTML / DOM Fingerprints
videowrapperytvideoleft-position-classcenter-position-classright-positon-classclose-buttongradient-overlayis-stickydata-syvos-enable-disabledata-syvos-widthdata-syvos-heightdata-syvos-video-positionsyvos_enable_youtube_sticky<section class="videowrapper ytvideo <a href="javascript:void(0);" class="close-button"></a><i class="fa fa-arrows-alt" aria-hidden="true"></i><div class="gradient-overlay"></div>