Video Grid Security & Risk Analysis
wordpress.org/plugins/video-gridThis is a beautiful responsive video grid with responsive lightbox for WordPress blogs and sites. Admin can manage any number of videos into the grid.
Is Video Grid Safe to Use in 2026?
Generally Safe
Score 99/100Video Grid has a strong security track record. Known vulnerabilities have been patched promptly.
The "video-grid" plugin v1.24 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and incorporating a decent number of nonce and capability checks. The absence of critical or high-severity taint flows and dangerous functions is also reassuring. However, significant concerns arise from the output escaping, where only 15% of outputs are properly escaped, indicating a strong potential for Cross-Site Scripting (XSS) vulnerabilities. Furthermore, the presence of two flows with unsanitized paths, although not resulting in critical or high-severity taint issues, still represents a potential risk. The plugin's history of two medium-severity XSS vulnerabilities, with the last one occurring in April 2023, suggests a recurring weakness in input validation and output sanitization, even though these are currently patched. Overall, while the plugin has some solid security foundations, the high rate of unescaped output and historical XSS issues point to a need for significant improvement in handling user-provided data to prevent potential client-side attacks.
Key Concerns
- Low percentage of properly escaped outputs
- Flows with unsanitized paths detected
- History of medium severity XSS vulnerabilities
Video Grid Security Vulnerabilities
CVEs by Year
Severity Breakdown
2 total CVEs
Video Grid <= 1.21 - Reflected Cross-Site Scripting
Video Grid <= 1.21 - Reflected Cross-Site Scripting
Video Grid Code Analysis
SQL Query Safety
Output Escaping
Data Flow Analysis
Video Grid Attack Surface
AJAX Handlers 2
Shortcodes 1
WordPress Hooks 10
Maintenance & Trust
Video Grid Maintenance & Trust
Maintenance Signals
Community Trust
Video Grid Alternatives
No alternatives data available yet.
Video Grid Developer Profile
19 plugins · 23K total installs
How We Detect Video Grid
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/video-grid/css/video-grid.css/wp-content/plugins/video-grid/css/bootstrap.min.css/wp-content/plugins/video-grid/css/font-awesome.css/wp-content/plugins/video-grid/css/responsive-slider.css/wp-content/plugins/video-grid/js/jquery.flexisel.js/wp-content/plugins/video-grid/js/video-grid.js/wp-content/plugins/video-grid/js/owl.carousel.js/wp-content/plugins/video-grid/js/responsive-slider.js+2 more/wp-content/plugins/video-grid/js/jquery.flexisel.js/wp-content/plugins/video-grid/js/video-grid.js/wp-content/plugins/video-grid/js/owl.carousel.js/wp-content/plugins/video-grid/js/responsive-slider.js/wp-content/plugins/video-grid/js/jquery.prettyPhoto.js/wp-content/plugins/video-grid/css/video-grid.css?ver=/wp-content/plugins/video-grid/css/bootstrap.min.css?ver=/wp-content/plugins/video-grid/css/font-awesome.css?ver=/wp-content/plugins/video-grid/css/responsive-slider.css?ver=/wp-content/plugins/video-grid/js/jquery.flexisel.js?ver=/wp-content/plugins/video-grid/js/video-grid.js?ver=/wp-content/plugins/video-grid/js/owl.carousel.js?ver=/wp-content/plugins/video-grid/js/responsive-slider.js?ver=/wp-content/plugins/video-grid/js/jquery.prettyPhoto.js?ver=/wp-content/plugins/video-grid/css/prettyPhoto.css?ver=HTML / DOM Fingerprints
video-grid-containerresponsive-video-gridrvg-video-item<!-- Responsive Video Grid Pro --><!-- Start Responsive Video Grid Pro -->data-video-iddata-grid-idvideo_grid_objresponsive_video_grid_slider/wp-json/video-grid/v1/check_file_exist/wp-json/video-grid/v1/get_youtube_info<div class='video-grid-container'<div class='responsive-video-grid'