The WordPress core team has released version 4.1.2 which is a critical security release. It addresses a high-risk XSS vulnerability as well as three other security issues.

All Pressjitsu customers have been automatically upgraded to WordPress 4.1.2 within a few hours after the release. If you experience any issues, please open a support request using your Pressjitsu control panel.

Plugin Updates

Some customers have also had some plugins updated automatically, including but not limited to Jetpack. This was part of a security sweep related to the recent disclosure of XSS vulnerabilities in various popular plugins.

Please note that some plugins on that list remain vulnerable, while others shipped the security fix in a major release, which has not been updated automatically for compatibility reasons. Such updates should be applied by website administrators manually.

Notifications

To help you stay up to date with plugin and theme updates, we have enabled a weekly e-mail notification for all our customers. This e-mail will contain some information on the themes and plugins that have updates available.

We encourage you to apply all theme and plugin updates as soon as possible, and feel free to use the backup feature in the Pressjitsu control panel before taking any action. This will allow you to quickly restore a copy of your entire site in case an update goes wrong.

Please get in touch with support if you have any questions.