WordPress 4.2.1 Critical Security Release
|Issue:||WordPress has released asecurity update update (4.2.1). This is a critical security release|
|Status:||Update has been released.|
|Who is impacted?||Websites running on 4.2.|
Why was this update released?
“The WordPress team was made aware of a cross-site scripting vulnerability, which could enable commenters to compromise a site. The vulnerability was discovered by Jouko Pynnönen.
WordPress 4.2.1 has begun to roll out as an automatic background update, for sites that support those.”
You can read more from the official WordPress site.
What should I do?
WordPress strongly encourages you to update your sites immediately.