Filestack WP Upload Security & Risk Analysis
wordpress.org/plugins/filestack-uploadUpload files directly to the cloud with support for multiple sources including local, Facebook, Dropbox, Google Drive, and more.
Is Filestack WP Upload Safe to Use in 2026?
Generally Safe
Score 99/100Filestack WP Upload has a strong security track record. Known vulnerabilities have been patched promptly.
The Filestack Upload v3.1.0 plugin exhibits a generally strong security posture based on the static analysis. It boasts a zero attack surface from unprotected entry points like AJAX handlers, REST API routes, or shortcodes, and avoids common pitfalls such as unescapated output, file operations, and external HTTP requests. The presence of nonces and capability checks further indicates a commitment to secure development practices. However, the analysis reveals a concerning pattern with SQL queries: all three detected queries are not using prepared statements, which can expose the plugin to SQL injection vulnerabilities. While no active vulnerabilities are reported, the history of one medium-severity CVE, specifically Cross-Site Scripting (XSS), dated relatively recently, warrants attention. This suggests that while the current version might be patched, past vulnerabilities point to potential areas where input sanitization and output escaping might need continuous scrutiny, especially concerning user-generated content or data processed by SQL queries.
Key Concerns
- SQL queries not using prepared statements
- Past medium severity CVE for XSS
Filestack WP Upload Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Filestack Official <= 2.1.0 - Reflected Cross-Site Scripting
Filestack WP Upload Code Analysis
SQL Query Safety
Output Escaping
Filestack WP Upload Attack Surface
WordPress Hooks 3
Maintenance & Trust
Filestack WP Upload Maintenance & Trust
Maintenance Signals
Community Trust
Filestack WP Upload Alternatives
WP-Stateless – Google Cloud Storage
wp-stateless
Upload and serve your WordPress media files from Google Cloud Storage.
Max Upload File Size Manager
max-upload-file-size-manager
Max Upload File Size Manager empowers you to effortlessly overcome your hosting provider's file size limits (up to 2 GB) by allowing seamless upl …
Cloud Storage Manager for Fluent Forms – Google Drive, Dropbox, OneDrive, S3 Uploads
cloud-storage-manager
Upload Fluent Forms files to Google Drive, Dropbox, OneDrive, S3, and Cloudflare R2. Save server space with cloud storage.
Uploadcare File Uploader and Adaptive Delivery (beta)
uploadcare
Uploadcare, an all-round media upload, storage, management, and delivery solution, breaks many WordPress Media Library limitations.
Filestack
filepicker-media-uploader
Use Filestack to upload files directly from Facebook, Instagram, Google Images and more for your WordPress site, without ever leaving WordPress.
Filestack WP Upload Developer Profile
1 plugin · 70 total installs
How We Detect Filestack WP Upload
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/filestack-upload/js/filestack.js/wp-content/plugins/filestack-upload/css/filestack.css/wp-content/plugins/filestack-upload/js/filestack-admin.js/wp-content/plugins/filestack-upload/js/filestack-widget.jshttps://filestack.com/sdk/fileloader.jsfilestack-upload/js/filestack.js?ver=filestack-upload/css/filestack.css?ver=filestack-upload/js/filestack-admin.js?ver=filestack-upload/js/filestack-widget.js?ver=HTML / DOM Fingerprints
filestack-upload-wrapperfilestack-widget-upload-buttonfilestack-widget-upload-previewdata-filestack-apikeydata-filestack-widget-optionsFilestackfilestack_widget_optionsfilestack_upload_params/wp-json/filestack/v1/upload[filestack-upload][filestack-widget]