WP-Safety

WPAdmin AWS CDN Security & Risk Analysis

wordpress.org/plugins/aws-cdn-by-wpadmin

Setup Amazon Cloudfront CDN for your website. Now with intuitive layout and more flexibility.

500 active installs v4.0.1 PHP 7.4+ WP 5.6+ Updated Feb 12, 2026
amazonawscdncloudfrontfree
100
A · Safe
CVEs total1
Unpatched0
Last CVEJul 11, 2023
Plugin page Download
Safety Verdict

Is WPAdmin AWS CDN Safe to Use in 2026?

Generally Safe

Score 100/100

WPAdmin AWS CDN has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jul 11, 2023Updated 1mo ago
Risk Assessment

The static analysis of "aws-cdn-by-wpadmin" v4.0.1 indicates a generally good security posture, with no identified entry points in the attack surface, no dangerous functions used, and all SQL queries employing prepared statements. The code also demonstrates strong output escaping and a reasonable number of capability checks. However, the presence of 4 file operations and 1 external HTTP request, while not inherently problematic, represent potential areas for further scrutiny if not implemented securely. The single nonce check is adequate but could be more robust depending on the functionality.

The vulnerability history shows one known CVE, which is fortunately reported as unpatched. This is a significant concern, even though it was a medium-severity CSRF vulnerability. The fact that a vulnerability was present and could potentially be exploited suggests that past security reviews or development practices may have allowed for such issues to arise. While the current version might have addressed this specific CVE, the history itself warrants caution. Overall, the plugin shows strengths in its current code quality, but the past vulnerability necessitates diligence.

Key Concerns

  • Known unpatched CVE exists
  • History of medium severity vulnerabilities
  • Potential risk from file operations (4)
  • Potential risk from external HTTP requests (1)
Vulnerabilities
1

WPAdmin AWS CDN Security Vulnerabilities

CVEs by Year

1 CVE in 2023
2023
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2023-37889medium · 4.3Cross-Site Request Forgery (CSRF)

WPAdmin AWS CDN <= 2.0.13 - Cross-Site Request Forgery

Jul 11, 2023 Patched in 3.0.0 (196d)
Code Analysis
Analyzed Mar 16, 2026

WPAdmin AWS CDN Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
144 escaped
Nonce Checks
1
Capability Checks
2
File Operations
4
External Requests
1
Bundled Libraries
0

Output Escaping

100% escaped144 total outputs
Attack Surface

WPAdmin AWS CDN Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 14
actioninitaws-cdn-by-wpadmin.php:66
actionadmin_menuincludes\class-wpcf-admin.php:13
actionadmin_enqueue_scriptsincludes\class-wpcf-admin.php:14
actionadmin_initincludes\class-wpcf-admin.php:15
actionadmin_noticesincludes\class-wpcf-admin.php:16
actiontemplate_redirectincludes\class-wpcf-rewriter.php:48
filterstyle_loader_srcincludes\class-wpcf-rewriter.php:103
filterscript_loader_srcincludes\class-wpcf-rewriter.php:107
filterwp_get_attachment_urlincludes\class-wpcf-rewriter.php:112
filterwp_get_attachment_image_srcincludes\class-wpcf-rewriter.php:113
filterwp_calculate_image_srcsetincludes\class-wpcf-rewriter.php:114
filterthe_contentincludes\class-wpcf-rewriter.php:115
filterwidget_textincludes\class-wpcf-rewriter.php:116
actiontemplate_redirectincludes\class-wpcf-rewriter.php:120
Maintenance & Trust

WPAdmin AWS CDN Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 12, 2026
PHP min version7.4
Downloads90K

Community Trust

Rating94/100
Number of ratings53
Active installs500
Alternatives

WPAdmin AWS CDN Alternatives

FrontPup

FrontPup

frontpup

A
100

Your AWS CloudFront companion. Clear cache and optimize your CloudFront distribution for your WordPress website

0 No CVEs
C3 Cloudfront Cache Controller

C3 Cloudfront Cache Controller

c3-cloudfront-clear-cache

A
100

This is simple plugin that clear all cloudfront cache if you publish posts.

3K No CVEs
Media Cloud for Bunny CDN, Amazon S3, Cloudflare R2, Google Cloud Storage, DigitalOcean and more

Media Cloud for Bunny CDN, Amazon S3, Cloudflare R2, Google Cloud Storage, DigitalOcean and more

ilab-media-tools

A
92

Automatically store media on Amazon S3, Cloudflare R2, Google Cloud Storage, DigitalOcean Spaces + others. Serve CSS/JS assets through CDNs.

7K 1 CVE
SMTP for Amazon SES – YaySMTP

SMTP for Amazon SES – YaySMTP

smtp-amazon-ses

A
94

Send WordPress emails through Amazon SES server using YaySMTP

3K 3 CVEs
Shift8 CDN

Shift8 CDN

shift8-cdn

A
100

This is a plugin that integrates a 100% free CDN service operated by Shift8, for your Wordpress site. What this means is that you can simply install t &hellip;

900 No CVEs
Developer Profile

WPAdmin AWS CDN Developer Profile

luckychingi

3 plugins · 520 total installs

72
trust score
Avg Security Score
90/100
Avg Patch Time
196 days
View full developer profile
Detection Fingerprints

How We Detect WPAdmin AWS CDN

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/aws-cdn-by-wpadmin/assets/css/wpcf-admin.css/wp-content/plugins/aws-cdn-by-wpadmin/assets/js/wpcf-admin.js
Script Paths
/wp-content/plugins/aws-cdn-by-wpadmin/assets/js/wpcf-admin.js
Version Parameters
aws-cdn-by-wpadmin/assets/css/wpcf-admin.css?ver=aws-cdn-by-wpadmin/assets/js/wpcf-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
wpcf-wrapwpcf-docs-wrapwpcf-docs-tocwpcf-card
Data Attributes
data-wpcf-cdn-domain
JS Globals
wpcf_options
FAQ

Frequently Asked Questions about WPAdmin AWS CDN