WordPress Issues 4.2.1, Another Critical Security Update

The second security update in a week is now available.

Chat with MarTechBot

WordPress has released another update to its content management software, again calling it a “critical security release.” This is version 4.2.1, and here’s the important bit from the WordPress announcement:

WordPress 4.2.1 is now available. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately.

A few hours ago, the WordPress team was made aware of a cross-site scripting vulnerability, which could enable commenters to compromise a site. The vulnerability was discovered by Jouko Pynnönen.

Version 4.2.1 can be updated via your WordPress dashboard or by manual download. Some hosting services offer automatic upgrades that should be underway soon, if not already.

Opinions expressed in this article are those of the guest author and not necessarily MarTech. Staff authors are listed here.

About the author

Matt McGee
Matt McGee joined Third Door Media as a writer/reporter/editor in September 2008. He served as Editor-In-Chief from January 2013 until his departure in July 2017. He can be found on Twitter at @MattMcGee.

Get the must-read newsletter for marketers.