Does Zencoder Video have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Zencoder Video compatible with WordPress 3.7.41?

According to WordPress.org data, Zencoder Video 0.1.2 has been tested up to WordPress 3.7.41. Check the plugin's changelog for the latest compatibility information.

How often is Zencoder Video updated?

Zencoder Video was last updated on Feb 22, 2014. Frequent updates are generally a positive security signal.

What is Zencoder Video's security score?

Zencoder Video has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Zencoder Video Security & Risk Analysis

wordpress.org/plugins/zencoder-video

Allow easy integration with Zencoder transcoding service to make HTML5 compatible video files.

10 active installs v0.1.2 PHP + WP 3.0.1+ Updated Feb 22, 2014

html5-videotranscodertranscodingvideoszencoder

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Zencoder Video Safe to Use in 2026?

Generally Safe

Score 85/100

Zencoder Video has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago

Risk Assessment

The "zencoder-video" v0.1.2 plugin exhibits a strong security posture based on the provided static analysis. There are no identified entry points within AJAX handlers, REST API routes, shortcodes, or cron events, and critically, none of these are reported as unprotected. The code also demonstrates good practices by using prepared statements for all SQL queries and including nonce and capability checks. However, the low percentage of properly escaped output (19%) presents a significant concern. This suggests a high likelihood of cross-site scripting (XSS) vulnerabilities, as user-supplied data may be rendered directly in the browser without proper sanitization.

While the plugin has no recorded vulnerability history, this should be viewed with caution in conjunction with the poor output escaping. The absence of past CVEs could be due to the plugin's age, limited adoption, or the fact that the current version is an early release. The lack of taint analysis flows being analyzed also means that the absence of critical or high-severity taint issues is not definitively confirmed. The plugin's strengths lie in its limited attack surface and adherence to secure database practices, but the widespread unescaped output remains a substantial risk that requires immediate attention.

Key Concerns

Low percentage of properly escaped output
No taint flows analyzed

Vulnerabilities

None known

Zencoder Video Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Zencoder Video Release Timeline

No version history available.

Code Analysis

Analyzed Apr 16, 2026

Zencoder Video Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

19% escaped16 total outputs

Attack Surface

Zencoder Video Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 11

actionadmin_menuadmin.php:8

actionadmin_initadmin.php:40

actioninitnotification.php:89

actionadmin_enqueue_scriptsposttype.php:5

actionadd_meta_boxesposttype.php:29

actionpost_edit_form_tagposttype.php:104

actionsave_postposttype.php:175

filtermanage_zcvideo_video_posts_columnsposttype.php:248

actionmanage_zcvideo_video_posts_custom_columnposttype.php:263

filterpost_row_actionsposttype.php:275

actioninitzencodervideo.php:60

Maintenance & Trust

Zencoder Video Maintenance & Trust

Maintenance Signals

WordPress version tested3.7.41

Last updatedFeb 22, 2014

PHP min version

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Zencoder Video Alternatives

Feeds for TikTok (TikTok feed, video, and gallery plugin)

feeds-for-tiktok

100

The best way to display TikTok videos on your WordPress website. Display clean, customizable, and responsive TikTok feeds from your TikTok account.

70K No CVEs

FV Flowplayer Video Player

fv-wordpress-flowplayer

WordPress's most reliable, easy to use and feature-rich video player. Supports responsive design, HTML5, playlists, ads, stats, Vimeo and YouTube.

20K 23 CVEs

HTML5 Video Player – Embed and Play Videos in Custom Player

html5-video-player

HTML5 Video Player Plugin lets you embed responsive videos in WordPress. It’s easy to use, fast, and supports MP4, WebM, OGG, FLV, Youtube and Vimeo.

20K 8 CVEs

Video Gallery – YouTube Playlist, Channel Gallery by YotuWP

yotuwp-easy-youtube-embed

Modern responsive YouTube video gallery helps your website getting noticed from visitors, increase the reach and stand out from the competitors.

20K 5 CVEs

Featured Video Plus

featured-video-plus

Add Featured Videos to your posts and pages. Works like magic with most themes which use Featured Images. Local Media, YouTube, Vimeo and many more.

10K No CVEs

Developer Profile

Zencoder Video Developer Profile

normanyung

2 plugins · 20 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Zencoder Video

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/zencoder-video/css/zcvideo.css

Version Parameters

zencoder-video/css/zcvideo.css?ver=

HTML / DOM Fingerprints

HTML Comments

<!-- Zencoder Job ID: <!-- Current Source: <!-- Zencoder Output:<!-- Zencoder API Key:+8 more

Data Attributes

id="_zcvideo_upload"name="_zcvideo_upload"id="_zcvideo_url"name="_zcvideo_url"id="zcvideo_input"id="zcvideo_output"+4 more

Shortcode Output

[videojs

FAQ