Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.5
WordPress Arbitrary File Upload Vulnerability in Plugin
BELL-CVE-2026-21863
Summary
A security weakness in a popular WordPress plugin allows attackers to upload and execute arbitrary files on a website. This could enable malicious code to be run on a site, potentially leading to data theft or other security breaches. Website administrators should update the vulnerable plugin to the latest version as soon as possible.
What to do
- Update bellsoft redis to version 7.0.15-r7.
- Update bellsoft redis to version 8.0.6-r0.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| bellsoft | redis | > 7.0.9-r0 , <= 7.0.15-r7 | 7.0.15-r7 |
| bellsoft | redis | > 8.0.2-r0 , <= 8.0.6-r0 | 8.0.6-r0 |
| bellsoft | redis | > 7.0.9-r0 | – |
Original title
BELL-CVE-2026-21863
osv CVSS3.1
7.5
- https://docs.bell-sw.com/security/cves/CVE-2026-21863 Vendor Advisory
Published: 26 Feb 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026