wordpress-circleWordPress 4.2.2 has just been released which contains several important security fixes. We recommend you update immediately if you haven’t already. If you are on one of our WordPress Care & Support Packages, no worries, we have taken care of it for you already! That’s what you pay for. 🙂

This update is important because WordPress versions 4.2 and earlier are affected by a critical cross-site scripting vulnerability, which could enable anonymous users to compromise a site. WordPress 4.2.2 includes a comprehensive fix for this issue.

The release also includes hardening for a potential cross-site scripting vulnerability when using the visual editor.

The Genericons icon font package, which is used in a number of popular themes and plugins, contained an HTML file vulnerable to a cross-site scripting attack. All affected themes and plugins hosted on WordPress.org (including the Twenty Fifteen default theme) have been updated today by the WordPress security team to address this issue by removing this nonessential file. To help protect other Genericons usage, WordPress 4.2.2 proactively scans the wp-content directory for this HTML file and removes it.

The release also fixes 13 other bugs which you can learn more about on the release notes page for 4.2.2.

nora-signature

wordpress, security, updates, news

Nora Kramer
Follow Me

Nora Kramer

Lead Web Designer & Developer at Nora Kramer Designs
Nora Kramer is a website professional and online marketing consultant with over two decades of experience in graphic design, website development and company branding. She also has a passion for photography and writing. Nora received the Charlie Award (1st Place) in 2002 for "Best Magazine Feature Article of the Year" from the Florida Magazine Association.
Nora Kramer
Follow Me
Click To Call

Pin It on Pinterest

Join over 4,500+ other subscribers who get my blog posts delivered directly to their inbox to learn how they can supercharge their websites.

It's TOTALLY FREE, so you have got nothing to lose and you can unsubscribe at any time.


YOU WILL ONLY SEE THIS OFFER ONCE TODAY!

We do not share or rent our mailing list to outside parties.

Thank you for subscribing!