QUICK HIT: Security (and Maintenance) Release for WordPress

Open-source content management system WordPress released an urgent security update last week for versions 4.7.2 and earlier and is strongly encouraging users to update immediately.

The new version (4.7.3) contains fixes to numerous security flaws that allowed for cross-site-scripting (XSS) via media file metadata (as well as video URLs in YouTube embed and taxonomy terms names) and other issues including unintended files which could be deleted by administrators using the plugin deletion functionality and control characters tricking redirect URL validation. There are also some 40 maintenance fixes to this update.

Websites that use the support automatic update feature should already be receiving the recent update but those using manual updates should consider updating to 4.7.3 now.

Peter Devereaux

As the Editor-in-Chief of Website Magazine and President of Website Services, Peter has established himself as a prominent figure in the digital marketing industry. With a wealth of experience and knowledge, Peter has been a driving force in shaping the landscape of digital marketing. His leadership in creating innovative and targeted marketing campaigns has helped numerous businesses achieve their revenue growth goals. Under his direction, Website Magazine has become a trusted source of information and insights for digital marketers worldwide. As President of Website Services, Peter oversees a team of talented professionals who specialize in SEO/SEM, email marketing, social media, and digital advertising. Through his hands-on approach, he ensures that his team delivers exceptional results to their clients. With a passion for digital marketing, Peter is committed to staying up-to-date with the latest industry trends and technologies, making him a sought-after thought leader in the field.