WP-Safety

Viddeo – Hochformat Videoplayer Security & Risk Analysis

wordpress.org/plugins/viddeo-hochformat-videoplayer

Mit diesem Plugin kannst du ganz einfach Hochformat-Videos von Viddeo.de per Shortcode auf deiner Website einbetten – flexibel und unkompliziert!

10 active installs v1.0.0 PHP 7.2+ WP 5.0+ Updated Feb 21, 2025
embedhochformatplayershortcodevideo
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Viddeo – Hochformat Videoplayer Safe to Use in 2026?

Generally Safe

Score 92/100

Viddeo – Hochformat Videoplayer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "viddeo-hochformat-videoplayer" v1.0.0 plugin demonstrates a generally strong security posture based on the static analysis. The absence of dangerous functions, file operations, external HTTP requests, and a high rate of properly escaped output are positive indicators. Furthermore, the consistent use of prepared statements for all SQL queries and the presence of capability checks suggest good development practices for input validation and authorization.

However, the analysis reveals some potential areas for concern. The lack of nonce checks, while not directly tied to an identified vulnerable entry point in this static analysis, is a missed opportunity to prevent CSRF attacks, especially if the single shortcode were to evolve to perform sensitive actions. The zero taint analysis results, while good, are based on zero flows analyzed, which could mean the analysis was incomplete or that the code simply doesn't present complex data flow scenarios.

Given the plugin's history of zero known CVEs and no recorded vulnerabilities, it suggests a mature and stable codebase. This, combined with the good static analysis findings, points to a low overall risk. The primary weakness lies in the absence of nonces for its single entry point, which is a common security measure that could further harden the plugin.

Key Concerns

  • Missing nonce checks on shortcode
Vulnerabilities
None known

Viddeo – Hochformat Videoplayer Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Viddeo – Hochformat Videoplayer Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
68 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

99% escaped69 total outputs
Attack Surface

Viddeo – Hochformat Videoplayer Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[viddeo] public\class-vidd-hfvp-public.php:22
WordPress Hooks 9
actionadmin_enqueue_scriptsincludes\class-vidd-hfvp.php:33
actionadmin_enqueue_scriptsincludes\class-vidd-hfvp.php:34
actionadmin_menuincludes\class-vidd-hfvp.php:35
actionadmin_initincludes\class-vidd-hfvp.php:36
actionwp_enqueue_scriptsincludes\class-vidd-hfvp.php:42
actionwp_enqueue_scriptsincludes\class-vidd-hfvp.php:43
actioninitincludes\class-vidd-hfvp.php:44
actionplugins_loadedviddeo-hochformat-videoplayer.php:51
actionshutdownviddeo-hochformat-videoplayer.php:54
Maintenance & Trust

Viddeo – Hochformat Videoplayer Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedFeb 21, 2025
PHP min version7.2
Downloads522

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Viddeo – Hochformat Videoplayer Alternatives

Simple Video Embed

Simple Video Embed

simple-video-embed

A
85

A simple plugin to embed responsive video and video playlist to posts or articles with nice features.

10 No CVEs
Videojs HTML5 Player

Videojs HTML5 Player

videojs-html5-player

A
99

Embed video file beautifully in WordPress using Video.js HTML5 Player. Embed HTML5 compatible responsive video in your post/page with Video.js.

8K 2 CVEs
Wonder Video Embed

Wonder Video Embed

wonderplugin-video-embed

A
91

Embed MP4, Youtube, Vimeo, Wistia videos to the sidebar widget, WordPress posts and pages.

5K 2 CVEs
Simple YouTube Responsive

Simple YouTube Responsive

simple-youtube-responsive

A
100

Easily embed responsive YouTube videos using a simple shortcode. Lazy load included.

3K 1 CVE
SmartVideo – Fast Video Player, Unlimited CDN, Vimeo Alternative

SmartVideo – Fast Video Player, Unlimited CDN, Vimeo Alternative

smartvideo

A
100

The fastest video player with unlimited CDN hosting. 12x faster start times, 8x fewer stalls. Perfect Vimeo replacement.

2K No CVEs
Developer Profile

Viddeo – Hochformat Videoplayer Developer Profile

Viddeo.de

1 plugin · 10 total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Viddeo – Hochformat Videoplayer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/viddeo-hochformat-videoplayer/assets/css/viddeo-hfvp-frontend.css/wp-content/plugins/viddeo-hochformat-videoplayer/assets/js/viddeo-hfvp-frontend.js
Generator Patterns
viddeo-hochformat-videoplayer
Version Parameters
viddeo-hochformat-videoplayer/assets/css/viddeo-hfvp-frontend.css?ver=viddeo-hochformat-videoplayer/assets/js/viddeo-hfvp-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
viddeo-player-container
HTML Comments
viddeo-hochformat-videoplayer shortcode output startviddeo-hochformat-videoplayer shortcode output end
Data Attributes
data-viddeo-iddata-viddeo-widthdata-viddeo-heightdata-viddeo-playlist
JS Globals
viddeo_hfvp_params
Shortcode Output
<div class="viddeo-player-container" data-viddeo-id="" data-viddeo-width="" data-viddeo-height="" data-viddeo-playlist="
FAQ

Frequently Asked Questions about Viddeo – Hochformat Videoplayer