
VidLog Security & Risk Analysis
wordpress.org/plugins/vidlogTrack self-hosted video plays and page views inside WordPress with instant logging, watched time tracking, CSV exports, and clean monthly logs.
Is VidLog Safe to Use in 2026?
Generally Safe
Score 100/100VidLog has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "vidlog" v1.0 plugin exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of dangerous functions, the exclusive use of prepared statements for SQL queries, and 100% proper output escaping are significant strengths. Furthermore, all identified entry points (AJAX handlers) include capability checks, and nonce checks are present on a majority of them, demonstrating good security practices in handling user-initiated actions. The plugin also shows no history of known vulnerabilities, which is a positive indicator of its current security maturity.
While the static analysis reveals no critical or high-severity taint flows and no unpatched CVEs, there are minor areas for improvement. The presence of file operations and external HTTP requests, though not inherently insecure in this context, warrants careful review in more detailed audits. The fact that not all AJAX handlers have nonce checks, while there are capability checks, could potentially leave a small window for certain types of attacks if not thoroughly validated within the AJAX handler's logic. However, given the current data, the overall risk associated with "vidlog" v1.0 is low, with a strong foundation of secure coding practices evident.
Key Concerns
- Missing nonce check on some AJAX handlers
VidLog Security Vulnerabilities
VidLog Release Timeline
VidLog Code Analysis
Output Escaping
Data Flow Analysis
VidLog Attack Surface
AJAX Handlers 5
WordPress Hooks 4
Maintenance & Trust
VidLog Maintenance & Trust
Maintenance Signals
Community Trust
VidLog Alternatives
SRS Simple Hits Counter
srs-simple-hits-counter
Simple plugin to count and show a total number of hits (Unique visitors or page-views) to the site without using any third party code.
Ninjalytics: Sales Reports & Order Export for WooCommerce and EDD
product-sales-report-for-woocommerce
Create sales reports and order exports for WooCommerce with product analytics, order fulfillment data, filtering, charts, and 15+ templates.
Export to Blogger
export-to-blogger
Export Wordpress data to Blogger(Blogspot) XML.
Export Customers Data
export-customers-data
Easily export WooCommerce customers' data to CSV or XLSX with advanced filters and smart field support.
Weblix – Online Users
weblix
Display online users and page views in the last 30 minutes, just like Google Analytics, but without slowing down your website.
VidLog Developer Profile
2 plugins · 10 total installs
How We Detect VidLog
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/vidlog/assets/js/vidlog.js/wp-content/plugins/vidlog/assets/css/vidlog.css/wp-content/plugins/vidlog/assets/js/vidlog-admin.js/wp-content/plugins/vidlog/assets/css/upgradepage.css/wp-content/plugins/vidlog/assets/js/vidlog.js/wp-content/plugins/vidlog/assets/js/vidlog-admin.jsvidlog/assets/js/vidlog.js?ver=vidlog/assets/css/vidlog.css?ver=vidlog/assets/js/vidlog-admin.js?ver=vidlog/assets/css/upgradepage.css?ver=HTML / DOM Fingerprints
VidlogData