WP Buffs Blog |

WordPress 4.6.1 Release Patches Two Security Vulnerabilities

Update with blurred city abstract lights background

If you’re a WP Buffs customer, your website has already been upgraded to WordPress 4.6.1. Woohoo!

Tierney / stock.adobe.com

WordPress 4.6.1 has arrived! This is a security release for all previous versions, so we strongly encourage you to update your site immediately.

WordPress versions 4.6 and earlier are affected by two security issues:

  • a cross-site scripting vulnerability via image filename.
  • a path traversal vulnerability in the upgrade package uploader.

In addition to the major security issues above, 4.6.1 fixes 15 bugs (see the release notes for more details).

Users who encounter any issues with the update to WordPress 4.6.1 are encouraged to report them in the WordPress support forums.

If you enjoyed this article, then you’ll really enjoy the 24/7 WordPress website management and support services WP Buffs’ has to offer! Partner with the team that offers every aspect of premium WordPress support services.

From speed optimization services, to unlimited website edits, security, 24/7 support, or even white-label site management for agencies and freelancers, our expert engineers have your back. Bring us in as part of your team to make your site Bufftastic! Check out our plans

Curious about what we do?

NEW!

Download free eBook with advice from experts

By submitting this form, you agree to be contacted by WP Buffs and Equalize Digital. You may unsubscribe from communications at any time using the links provided in all emails.