VdoCipher: Secure Video Player and Hosting Security & Risk Analysis
wordpress.org/plugins/vdocipherWordPress Video Player Plugin for VdoCipher: secure video embed, custom video player, watermark & easy integration with all LMS platforms.
Is VdoCipher: Secure Video Player and Hosting Safe to Use in 2026?
Generally Safe
Score 99/100VdoCipher: Secure Video Player and Hosting has a strong security track record. Known vulnerabilities have been patched promptly.
The vdocipher plugin v1.30 presents a generally good security posture with strong adherence to secure coding practices. The absence of critical or high severity taint flows, 100% usage of prepared statements for SQL queries, and a high percentage of properly escaped output are commendable. The presence of a capability check and the limited attack surface are also positive indicators. However, the plugin is not without its risks. The existence of a taint flow with unsanitized paths, even if not rated as critical or high, warrants attention as it represents a potential vector for vulnerabilities. Furthermore, the history of a medium severity Cross-Site Scripting (XSS) vulnerability, although currently patched, indicates a past weakness that could theoretically be reintroduced if code is not carefully maintained.
Key Concerns
- Taint flow with unsanitized path
- Past medium severity XSS vulnerability
- 0 Nonce checks found
VdoCipher: Secure Video Player and Hosting Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
VdoCipher <= 1.29 - Authenticated (Contributor+) Stored Cross-Site Scripting
VdoCipher: Secure Video Player and Hosting Code Analysis
Output Escaping
Data Flow Analysis
VdoCipher: Secure Video Player and Hosting Attack Surface
Shortcodes 1
WordPress Hooks 5
Maintenance & Trust
VdoCipher: Secure Video Player and Hosting Maintenance & Trust
Maintenance Signals
Community Trust
VdoCipher: Secure Video Player and Hosting Alternatives
Featured Video for WordPress – VideographyWP
videographywp
WordPress featured video plugin that allows you to create video posts from YouTube videos.
CopySafe Video Protection – Copy Protect Video
wp-copysafe-video
Display copy protected videos in WordPress pages and posts.
Digital Content Delivery (incl. DRM) by Flickrocket for WooCommerce
woocommerce-digital-content-delivery-with-drm-flickrocket
Sales and rentals of (optionally DRM protected) digital content such as video (HD+SD), DVD, audio books, ebooks (epub and PDF) and packaged content
Polanger VideoHub Lite
polanger-videohub-lite
Free YouTube-like video platform for WordPress. Create your own video sharing website with modern UI. Import videos from YouTube, Vimeo, and more.
Secure Video Player (Shaka + EzDRM Support)
secure-video-player
This plugin integrates Shaka Player (by Google) and supports DRM via EzDRM. It is not affiliated with or endorsed by Google or EzDRM.
VdoCipher: Secure Video Player and Hosting Developer Profile
1 plugin · 2K total installs
How We Detect VdoCipher: Secure Video Player and Hosting
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/vdocipher/vdocipher-sdk.js/wp-content/plugins/vdocipher/vdocipher.js/wp-content/plugins/vdocipher/vdocipher_admin.jshttps://player.vdocipher.com/v2/api.jsHTML / DOM Fingerprints
vdo-player-wrapper<!-- VdoCipher Player START --><!-- VdoCipher Player END -->data-vdocipherdata-vdokeydata-vdoidVdoPlayervdo/wp-json/vdocipher/v1/get_video_details[vdo-player vdo=