WordPress Security Release

Number: AV16-003
Date: 8 January 2016

Purpose

The purpose of this advisory is to bring attention to a WordPress Security Release.

Assessment

WordPress versions previous to 4.4 are affected by a critical cross-site scripting (XSS) vulnerability which could allow a site to be compromised.

Suggested Action

WordPress versions previous to 4.4 are affected by a critical cross-site scripting (XSS) vulnerability which could allow a site to be compromised.

References:

• https://wordpress.org/news/2016/01/wordpress-4-4-1-security-and-maintenance-release/
• https://codex.wordpress.org/Version_4.4.1