If you haven’t yet heard the news, it’s time to upgrade your WordPress installations! If you have automatic upgrades enabled, login your your admin area to double check you’re on version 4.2.3!
This past Thursday a critical security update was released to fix a cross-site scripting (XSS) vulnerability that can be exploited to take over websites. This could allow users with the Contributor or Author roles to compromise a website.
The new update also fixes a low-severity flaw that allows users with the Subscriber permission to create post drafts through the Quick Draft feature, as well as 20 other non-security bugs.
Current Name Hero customers can submit a ticket to have our team upgrade for you. Don’t worry, we’ll backup your current install just incase something goes wrong!
Feel free to comment below or reach out with any questions or concerns.