WordPress 4.6.1 Released
WordPress 4.6.1 is now available. This is a security release for all previous versions and we have updated every WordPress Blog Support account.
Here’s why WordPress was updated.
WordPress versions 4.6 and earlier are affected by two security issues: a cross-site scripting vulnerability via image filename, reported by SumOfPwn researcher Cengiz Han Sahin; and a path traversal vulnerability in the upgrade package uploader, reported by Dominik Schilling from the WordPress security team.
Other Changes
In addition to the security issues above, WordPress 4.6.1 fixes 15 bugs from 4.6. The WordPress Blog has more information and a complete list of changes here.
Important Changes for Bloggers
If you’ve been learning How to Blog with WordPress by watching a WordPress Tutorial from our Learning Campus you’ll be glad to now that we’ve been updating the every WordPress Tutorial.
