Skip to main content
PricingFeaturesAboutContactBlog
Log in
PricingFeaturesAboutContactBlogLog in

WordPress 4.2.1

Dave Matthews
Categories
Security
Post Date
Apr 27th, 2015

WordPress 4.2.1 has been released, which is a security patch for all previous versions. It fixes a high-risk XSS vulnerability in the core commenting functionality.

The vulnerability allows anonymous visitors to compromise a WordPress site by executing arbitrary JavaScript using the comment form. The proof-of-concept and technical details have been published by Jouko Pynnönen on the Klikki Oy website.

All Pressjitsu customers have been upgraded to WordPress 4.2.1. If you’re not hosted with Pressjitsu, we recommend you update to the latest version immediately.


Ready-to-use expert knowledge right in your inbox
Sign up here for our weekly newsletter to get WordPress tips from industry experts.