Does Fast AWS have any unpatched vulnerabilities?

No. All known vulnerabilities in Fast AWS have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Fast AWS compatible with WordPress 6.3.8?

According to WordPress.org data, Fast AWS 1.1.2 has been tested up to WordPress 6.3.8. Check the plugin's changelog for the latest compatibility information.

Is Fast AWS compatible with PHP 7.4+?

Fast AWS requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Fast AWS updated?

Fast AWS was last updated on Aug 9, 2023. Frequent updates are generally a positive security signal.

What is Fast AWS's security score?

Fast AWS has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Fast AWS Security & Risk Analysis

wordpress.org/plugins/fast-aws

Enable Amazon File Protection for Fast Member

10 active installs v1.1.2 PHP 7.4+ WP 4.0+ Updated Aug 9, 2023

amazon-web-servicesfast-awsfast-flowfast-members3-file-protection

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Fast AWS Safe to Use in 2026?

Generally Safe

Score 85/100

Fast AWS has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The "fast-aws" plugin v1.1.2 presents a concerning security posture, primarily due to a complete lack of authorization checks and inadequate data sanitization practices in its SQL queries. While the attack surface appears minimal, with no exposed AJAX handlers, REST API routes, shortcodes, or cron events, the absence of capability checks or nonce checks means that any function that *could* be triggered would be accessible without proper authentication or authorization. Furthermore, all nine SQL queries are executed without prepared statements, making them highly susceptible to SQL injection vulnerabilities, especially if any input is ever processed without sanitization. The plugin also exhibits a weakness in output escaping, with 25% of outputs not properly escaped, posing a potential risk for cross-site scripting (XSS) vulnerabilities.

The vulnerability history for "fast-aws" is clean, with no recorded CVEs. This might suggest that the plugin has either been less of a target or that prior versions have not had significant exploitable flaws. However, this lack of history should not be interpreted as a guarantee of current security, especially given the significant red flags identified in the code analysis. The combination of raw SQL queries, unescaped output, and a complete absence of any access control mechanisms creates a substantial risk profile, even with a seemingly small attack surface. The bundling of Guzzle, a popular HTTP client, is standard practice but doesn't inherently offset the identified vulnerabilities.

In conclusion, while "fast-aws" v1.1.2 has no reported historical vulnerabilities and a seemingly contained attack surface, the critical findings in its code analysis, particularly the pervasive use of raw SQL and the complete lack of authorization checks, introduce significant security risks. The absence of these fundamental security controls is a serious concern that outweighs the plugin's clean vulnerability history. Users should be highly cautious and consider the potential for SQL injection and XSS attacks.

Key Concerns

SQL queries without prepared statements
Missing capability checks
Missing nonce checks
Unescaped output

Vulnerabilities

None known

Fast AWS Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Fast AWS Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Guzzle

SQL Query Safety

0% prepared9 total queries

Output Escaping

75% escaped8 total outputs

Attack Surface

Fast AWS Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

filterff_settingsfast-aws.php:20

filterff_settings_datafast-aws.php:21

Maintenance & Trust

Fast AWS Maintenance & Trust

Maintenance Signals

WordPress version tested6.3.8

Last updatedAug 9, 2023

PHP min version7.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Fast AWS Alternatives

Amazon Web Services

amazon-web-services

Houses the Amazon Web Services (AWS) PHP SDK v2 libraries and manages access keys.

6K No CVEs

Fast Flow

fast-flow-dashboard

Data dashboard, user tagging and settings plugin for Fast Flow plugins system.

100 4 CVEs

Fast ThriveCart

fast-thrivecart

Integrate ThriveCart with your FastMember site

20 No CVEs

AWS SNS Plugin

aws-sns

This plugin is created to send push notifications to different devices using Amazon Simple Notification Service.

10 No CVEs

Simple AWS SES Mail

simple-ses-mail

Amazon Simple Email Service (SES) is a cost-effective, flexible, and scalable email service

10 No CVEs

Developer Profile

Fast AWS Developer Profile

fastflow

14 plugins · 940 total installs

trust score

Avg Security Score

87/100

Avg Patch Time

432 days

View full developer profile

Detection Fingerprints

How We Detect Fast AWS

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

item-tab-box

Data Attributes

id="s3url"name="s3url"id="s3akey"name="s3akey"id="s3skey"name="s3skey"

FAQ