WordPress 4.2.1 Security Release



WordPress 4.2.1 Security Release

A few hours ago, the WordPress team was made aware of a cross-site scripting vulnerability, which could enable commenters to compromise a site.

If you have a website hosted by Cookehouse, fear not. We’ve got your back. We have spent the last few days updating the core of your website(s) as well as your plugins.

WordPress 4.2.1 is now available. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately.

A few hours ago, the WordPress team was made aware of a cross-site scripting vulnerability, which could enable commenters to compromise a site. The vulnerability was discovered by Jouko Pynnönen.

WordPress 4.2.1 has begun to roll out as an automatic background update, for sites that support those.

Source: WordPress › WordPress 4.2.1 Security Release