WordPress has recently released its latest update: WordPress 4.0.1 version. This is a critical security release for all previous versions. According to WordPress.org, the latest version fixes the following and includes certain enhancements:
- Three cross-site scripting issues that a contributor or author could use to compromise a site
- An issue that could lead to a denial of service when passwords are checked
- Additional protections for server-side request forgery attacks when WordPress makes HTTP requests
- and much more…
Depending on the existing version of WordPress you have, your WordPress may have been updated automatically. But to ensure your WordPress website is updated, it is recommended to log in to your site and check if update is required. To update, log in to your WordPress dashboard and the update button is listed on top of the browser. To learn more about the update, please read this blog post from WordPress.org. Please remember to perform a full site backup before updating your WordPress site.