WordPress 4.7.2 Security Release

Posted by Andrei on January 27, 2017 in WordPress

A new WordPress 4.7.2 Security release has just been made available. This latest version fixes three security issues discovered in the 4.7.1 and earlier versions. So, we advise all our users to update to the latest version as soon as possible.

These are the main security issues addressed:

  • The user interface for assigning taxonomy terms in Press.
  • WP_Query is vulnerable to a SQL injection (SQLi) when passing unsafe data.
  • A cross-site scripting (XSS) vulnerability was discovered in the posts list table.

You can find all details here.

Your website should be automatically updated, but if you don’t want to wait, browse to Dashboard > Updates and click the Update Now button.

Tags :  ,