Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
WordPress Plugin Vulnerability Allows Remote File Upload
MINI-2vf5-hfg5-8q6c
Summary
A weakness in a popular WordPress plugin allows attackers to upload malicious files to a website, potentially leading to unauthorized access or data breaches. If left unpatched, this vulnerability could allow an attacker to take control of your website. Update to the latest version of the plugin to fix this issue.
What to do
- Update aws-flb-kinesis to version 1.10.3-r10.
- Update aws-flb-kinesis-compat to version 1.10.3-r10.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | aws-flb-kinesis | <= 1.10.3-r10 | 1.10.3-r10 |
| – | aws-flb-kinesis-compat | <= 1.10.3-r10 | 1.10.3-r10 |
Original title
MINI-2vf5-hfg5-8q6c
Published: 12 Apr 2026 · Updated: 12 Apr 2026 · First seen: 12 Apr 2026