The latest version of WordPress was released – WordPress 4.1.2 is now available!
Included in this new version are some important fixes. As a critical security release, it is no surprise many of the changes are security fixes and not new functionality.
Reasons for the changes include:
- A serious critical cross-site scripting vulnerability, which could enable anonymous users to compromise a site.
- Files with invalid or unsafe names could be upload.
- Some plugins are vulnerable to an SQL injection attack.
- A very limited cross-site scripting vulnerability could be used as part of a social engineering attack.
- Four hardening changes, including better validation of post titles within the Dashboard.
After you consider all the changes and what is now available in this upgrade, you will want to back up your site first, and then install WordPress 4.1.2! Don’t think that you have nothing to worry about and that the upgrade will go smoothly since it is just a click of a button! ALWAYS make a backup of your entire site before moving to a new version. And remember… a full backup includes all your files as well as backing up the database! Be safe, my friend!
If you need assistance with this upgrade (or don’t know how to take a complete backup of your website), schedule some complimentary time with us and we can talk about it! In most cases, we can do the work within 48 hours!
Oh how I wish all my WP sites updated automatically. But great news about the new features!
Kathy – while sometimes this seems like it is nice, I personally do not like it… Check out: Automatic WordPress Updates.
Thank you for this! I saw the updates yesterday and today and have been clicking on them as I see them (for the WP and the plugins) but I honestly haven’t had time to look into what they are about. WP seems to be pretty quick about getting those out when there is a compromised system.
Good point, Stacey! When there is trouble (i.e.,. a vulnerability is discovered), the find folks at WordPress jump on it to correct quickly! That is one of the benefits of using Open Source software where many people work on a project collectively!
I get nervous with updates (and definitely stay away from automatic updates!).
I’m going to wait a week or so before downloading it. Thanks for the heads up!
Don’t wait too long, Jacqui, if you do not have to! This update from WordPress (as well as the plugin updates that have recently come out) all address similar issues! Make your site safer sooner than later!
Thanks for stopping by!
Check if you can save or update your pages, because with this new update I can’t do that anymore. Nothing seems to save anymore and I am very upset.
I can save and update my pages, Polya. Sounds like you may have a conflict occur. Perhaps one of your plugins is not playing nicely with the new WordPress code or maybe your theme.